US7451477B2 - System and method for rule-based entitlements - Google Patents

System and method for rule-based entitlements Download PDF

Info

Publication number
US7451477B2
US7451477B2 US10/279,564 US27956402A US7451477B2 US 7451477 B2 US7451477 B2 US 7451477B2 US 27956402 A US27956402 A US 27956402A US 7451477 B2 US7451477 B2 US 7451477B2
Authority
US
United States
Prior art keywords
role
resource
client
entitlement
evaluating
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active, expires
Application number
US10/279,564
Other versions
US20030105974A1 (en
Inventor
Philip B. Griffin
Manish Devgan
Jason Howes
Scott Dunbar
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Oracle International Corp
Original Assignee
BEA Systems Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by BEA Systems Inc filed Critical BEA Systems Inc
Priority to US10/279,564 priority Critical patent/US7451477B2/en
Assigned to BEA SYSTEMS, INC. reassignment BEA SYSTEMS, INC. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: HOWES, JASON, GRIFFIN, PHILIP B., DEVGAN, MANISH, DUNBAR, SCOTT
Publication of US20030105974A1 publication Critical patent/US20030105974A1/en
Application granted granted Critical
Publication of US7451477B2 publication Critical patent/US7451477B2/en
Assigned to ORACLE INTERNATIONAL CORPORATION reassignment ORACLE INTERNATIONAL CORPORATION ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: BEA SYSTEMS, INC.
Active legal-status Critical Current
Adjusted expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/27Replication, distribution or synchronisation of data between databases or within a distributed database system; Distributed database system architectures therefor
    • G06F16/275Synchronous replication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/80Information retrieval; Database structures therefor; File system structures therefor of semi-structured data, e.g. markup language structured data such as SGML, XML or HTML
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/95Retrieval from the web
    • G06F16/954Navigation, e.g. using categorised browsing
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/95Retrieval from the web
    • G06F16/958Organisation or management of web site content, e.g. publishing, maintaining pages or automatic linking
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/95Retrieval from the web
    • G06F16/958Organisation or management of web site content, e.g. publishing, maintaining pages or automatic linking
    • G06F16/986Document structures and storage, e.g. HTML extensions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/101Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by binding digital rights to specific entities
    • G06F21/1012Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by binding digital rights to specific entities to domains
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/101Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by binding digital rights to specific entities
    • G06F21/1015Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by binding digital rights to specific entities to users
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/106Enforcing content protection by specific content processing
    • G06F21/1064Restricting content processing at operating system level
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/107License processing; Key processing
    • G06F21/1073Conversion
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/107License processing; Key processing
    • G06F21/1076Revocation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/604Tools and structures for managing or administering access control systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6227Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database where protection concerns the structure of data, e.g. records, types, queries
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/629Protecting access to data via a platform, e.g. using keys or access control rules to features or functions of an application
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/10Office automation; Time management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/18Delegation of network management function, e.g. customer network management [CNM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/22Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks comprising specially adapted graphical user interfaces [GUI]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0815Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0884Network architectures or network communication protocols for network security for authentication of entities by delegation of authentication, e.g. a proxy authenticates an entity to be authenticated on behalf of this entity vis-à-vis an authentication entity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/102Entity profiles
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • H04L67/025Protocols based on web technology, e.g. hypertext transfer protocol [HTTP] for remote control or remote monitoring of applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/142Managing session states for stateless protocols; Signalling session states; State transitions; Keeping-state mechanisms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/2866Architectures; Arrangements
    • H04L67/30Profiles
    • H04L67/306User profiles
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/34Network arrangements or protocols for supporting network services or applications involving the movement of software or configuration parameters 
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/51Discovery or management thereof, e.g. service location protocol [SLP] or web services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • H04L67/567Integrating service provisioning from a plurality of service providers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/75Indicating network or usage conditions on the user display
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/22Parsing or analysis of headers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/30Definitions, standards or architectural aspects of layered protocol stacks
    • H04L69/32Architecture of open systems interconnection [OSI] 7-layer type protocol stacks, e.g. the interfaces between the data link level and the physical level
    • H04L69/322Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions
    • H04L69/329Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions in the application layer [OSI layer 7]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2101Auditing as a secondary aspect
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2117User registration
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2141Access rights, e.g. capability lists, access control lists, access tables, access matrices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2145Inheriting rights or properties, e.g., propagation of permissions or restrictions within a hierarchy
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2149Restricted operating environment
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/2866Architectures; Arrangements
    • H04L67/2871Implementation details of single intermediate entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • H04L67/564Enhancement of application control based on intercepted application data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • H04L67/568Storing data temporarily at an intermediate stage, e.g. caching
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10TECHNICAL SUBJECTS COVERED BY FORMER USPC
    • Y10STECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10S707/00Data processing: database and file management or data structures
    • Y10S707/99931Database or file accessing
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10TECHNICAL SUBJECTS COVERED BY FORMER USPC
    • Y10STECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10S707/00Data processing: database and file management or data structures
    • Y10S707/99931Database or file accessing
    • Y10S707/99933Query processing, i.e. searching
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10TECHNICAL SUBJECTS COVERED BY FORMER USPC
    • Y10STECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10S707/00Data processing: database and file management or data structures
    • Y10S707/99951File or database maintenance
    • Y10S707/99952Coherency, e.g. same view to multiple users
    • Y10S707/99953Recoverability
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10TECHNICAL SUBJECTS COVERED BY FORMER USPC
    • Y10STECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10S707/00Data processing: database and file management or data structures
    • Y10S707/99951File or database maintenance
    • Y10S707/99952Coherency, e.g. same view to multiple users
    • Y10S707/99954Version management

Definitions

  • BEA WebLogic PortalTM Guide to Using the BEA E-Business Control Center (Version 4.0).
  • the present invention disclosure relates to the field of user authorization and in particular, role-based entitlements.
  • Computer authorization systems are typically permission-based. Once a user is authorized, usually by entering a password, the user is assigned a fixed set of permissions that govern the user's access to resources in an enterprise application. For example, a user may have permission to modify computer files belonging to the accounting department, but not the human resources department. A user's role in an organization will change over time, however, as the user acquires new skills and responsibilities. Access to resources should be tailored to each user's particular circumstances. Accordingly, a user's permissions need to be modified in order to reflect new privileges. When the number of users is great, administering fine-grained details of each individual user's permissions can create significant administrative overhead.
  • FIG. 1 is an illustration of a static authorization scheme.
  • FIG. 2 a is an illustration of a dynamic authorization scheme in accordance to one embodiment of the invention.
  • FIG. 2 b is the dynamic authorization scheme of FIG. 2 a in a different state.
  • FIG. 3 is a system in accordance to one embodiment of the invention.
  • a resource operation request is sent from a client process (or client) to resource process (or resource).
  • a client can be a task or process through which a user interacts with a resource (e.g., a web browser), or it may simply be an autonomous task or process.
  • a resource is any part of a computer network that can be assigned permissions.
  • a resource can be data, a file, a database, a portion of a database, an object, an operating system resource, an administrative task, a graphical user interface, a process, a thread, a JavaTM application, a JavaTM applet, a JavaTM servlet, or a JavaTM Enterprise Bean.
  • JavaTM is an objected-oriented programming language and run-time environment available from Sun Microsystems, Inc. of Palo Alto, Calif.
  • An access control mechanism intercepts the resource operation sent by the client to the resource and determines if it is permitted based on the client's entitlements.
  • An entitlement is a business rule that grants or denies access to a resource.
  • determination of entitlements consists of dynamically associating roles with the client based on rules that take into account information about the client, information about the client's communication session, or the current state of the system. Roles are used to determine which operations the client is permitted to perform on a resource. In one embodiment, if one of the permitted operations matches the requested operation, the client is entitled to perform that operation.
  • resources can be associated with portals.
  • a portal is a feature-rich web site. It provides a point of access to enterprise data and applications, presenting a unified and personalized view of that information to employees, customers and business partners.
  • Portals allow multiple web applications within a single web interface. In addition to regular web content that appears in a portal (e.g., text or graphics), portals provide the ability to display portlets—self-contained applications or content—all in a single web interface. Portals also support multiple pages with tab-based navigation, with each page containing its own content and portlets.
  • One such system is the WebLogic PortalTM, available from BEA Systems, Inc. of San Jose, Calif.
  • clients can belong to one or more portal groups.
  • Roles are used to dynamically determine which portal groups a client belongs to.
  • Portal groups provide a means for organizing users with common characteristics into a single category.
  • Portal groups also allow for the definition of different views of a portal for different portal groups, making it seem as if users in each group are looking at completely different web sites.
  • FIG. 1 is an illustration of an authorization scheme which utilizes static permissions.
  • Client 1 can access resources A-C according to a fixed set of permissions.
  • resources A-C could be individual portlets on a single portal page.
  • client 1 can edit resource A, but can only view resource B, and has no access to resource C.
  • FIG. 2 a is an illustration of an authorization scheme in accordance with one embodiment of the invention.
  • client 1 attempts to edit resource C.
  • the edit operation is intercepted by process 2 which dynamically determines, at that point in time, what resources client 1 may edit. Client 1 is then given permission to edit only those resources. In the current state of the system, client 1 can only edit resource A. Therefore, the edit operation fails.
  • FIG. 2 b is the authorization scheme of FIG. 2 a in a different state. Again, client 1 attempts to edit resource C. The system is now in a different state and process 2 dynamically determines that client 1 can edit resources A and C, but not B. Therefore, the edit operation succeeds.
  • An entitlement in one embodiment is a set of attributes: resource, role, capability, and permission. Given a resource, a role and a capability, a client can perform an operation on the resource corresponding to the capability if the permission allows it. Entitlements can be stored in database and retrieved or queried based on any of their attributes.
  • an administrative task can involve creating, removing, or modifying information pertaining to users in a system; creating, removing, or modifying attributes of portlets and portal pages; or altering the appearance and behavior of portlets and portal pages.
  • resource names can be organized in a taxonomy. A taxonomy provides a means of categorizing and uniquely identifying a resource and is hierarchical in nature. For example, a stock quote portlet “Quote” on the “web” portal page could be:
  • “myPortal” is the top level taxonomy name and serves to indicate that the resource is a portal named “myPortal”.
  • the next part of the resource name, “stockBroker”, identifies a portal group within the portal “myPortal” consisting of stockbrokers.
  • the third part of the resource name indicates a portlet “quotePortlet” for the portal group “stockBroker”.
  • the resource name in (1) identifies a portlet “quotePortlet” within the portal group “stockbroker” and within portal “myPortal”.
  • resources can be organized into resource groups wherein a single resource group name can represent a collection of resources.
  • An entitlement specifying a resource group, rather than a single resource, can be extended such that the capability and permission attributes would apply to all resources referred to by the resource group name. If a resource operation specifies a resource rather than a resource group, the resource can be mapped to a resource group before determining which entitlements are applicable to the operation. Resource group names could likewise be organized in a taxonomy.
  • a role is defined in terms of a rule comprised of one or more logical expressions.
  • a role rule can be based on evaluation of predicates.
  • a predicate is a rule that evaluates to true or false.
  • predicates may include other predicates, logical operators (e.g., AND, NOT and OR), mathematical operations, method calls, calls to external systems, function calls, etc.
  • rules can be specified in plain English. For example:
  • the role that is being determined is “ExperiencedJavaDeveloper”.
  • the predicate “Developer” may evaluate to true when, for instance, information contained in a user profile indicates that the client is a user in the software development department of an organization.
  • the other predicates (“Skill level”, “Preferred language”) could similarly be evaluated using information from the user profile.
  • the predicate can be based on the evaluation of information about a client's session (e.g., the state of communication between the client and other processes in the system).
  • session information can include information about a client's pattern of interaction with a graphical user interface, such as a portlet. It will be apparent to those skilled in the art that a predicate can be based on any information, whether the information is associated with a particular client or not. For example:
  • two predicates (“TimeofDay” and “SystemLoad”) are based on information unrelated to a particular client.
  • a client is allowed to be a system administrator if it is the middle of the night, the system is not busy, and the client has level 5 administration skills.
  • an entitlement's capability is a operation that can be performed for a given role and on a given resource.
  • the capability can be “show”, “edit”, or “remove”. These operations control whether the portlet is initially displayed for the client (“show”), whether the client can edit information displayed in the portlet (“edit”), and whether the client can hide a portlet window (“remove”). It will be apparent to one skilled in the art that the capability can be any that is feasible for a given resource.
  • An entitlement's permission corresponds to the capability and indicates whether the capability for the given resource and role is granted, denied or abstained. If the permission is granted, the operation should be permitted on the resource. If the permission is denied, the operation should not be permitted. Finally, if the permission is abstain, then the operation is not explicitly granted or denied. It will be apparent to one skilled in the art that other permissions are possible.
  • FIG. 3 is a system in accordance with one embodiment of the invention.
  • Client 1 initiates a resource operation directed to resource 3 .
  • Client 1 could be, for example, a user interacting with a portal in an attempt to edit information displayed in a portlet named “accountProfilePortlet”. This assumes that client 1 had permission to view the profile portlet in the first place.
  • the resource operation is intercepted by access controller 2 .
  • the resource operation can contain information about a user (e.g., a user identifier or a user profile, characteristics such as gender and age, etc.).
  • the resource operation can contain information about the session or a hypertext transfer protocol (“HTTP”) request.
  • HTTP hypertext transfer protocol
  • HTTP request information can pertain to character encoding, remote user, authorization scheme, content length, server port, context path, request URI, request method, scheme, servlet path, content type, remote host, request protocol, locale, server name, remote address, query string, path information, etc.
  • the resource operation can contain any other kind of information relevant to evaluating role rule predicates.
  • Access controller 2 directs role mapper 5 to determine which roles correspond to client 1 at that point in time.
  • Role mapper 5 uses role rules database 6 to dynamically determine which roles apply to the client. If no role is found, a default role of “everyone” is assumed. Suppose, for example, the following roles applied:
  • entitlements that have capabilities compatible with the requested operation are considered.
  • the role optionTrader allows editing of the accountProfilePortlet whereas the role registeredUser does not. (The default “everyone” roles are ignored in this case since other roles have been established.)
  • decision module 4 employs an optimistic access scheme by logically OR'ing the entitlements and would thus grant permission to edit the portlet.
  • decision module 4 logically AND's the entitlements and thus would deny permission to edit the portlet.
  • decision module 4 can use heuristics to determine the permission or rely on other modules to make the decision on its behalf.
  • performance can be improved through caching techniques.
  • access controller 2 can cache recently determined roles for clients and thereby forgo utilization of role mapper 5 .
  • roles that are dependent on time-sensitive predicates would have to be reevaluated.
  • role mapper 5 can do the same. Cached roles can automatically be removed from the cache through an aging process or when the cache is full.
  • access controller 2 or decision module 4 can cache recently determined entitlements. In this way, access controller 2 can forego utilizing role mapper 5 and decision module 4 when cached information is considered consistent with role rules and entitlements.
  • One embodiment maybe implemented using a conventional general purpose or a specialized digital computer or microprocessor(s) programmed according to the teachings of the present disclosure, as will be apparent to those skilled in the computer art.
  • Appropriate software coding can readily be prepared by skilled programmers based on the teachings of the present disclosure, as will be apparent to those skilled in the software art.
  • the invention may also be implemented by the preparation of integrated circuits or by interconnecting an appropriate network of conventional component circuits, as will be readily apparent to those skilled in the art.
  • One embodiment includes a computer program product which is a storage medium (media) having instructions stored thereon/in which can be used to program a computer to perform any of the features presented herein.
  • the storage medium can include, but is not limited to, any type of disk including floppy disks, optical discs, DVD, CD-ROMs, microdrive, and magneto-optical disks, ROMs, RAMs, EPROMs, EEPROMs, DRAMs, VRAMs, flash memory devices, magnetic or optical cards, nanosystems (including molecular memory ICs), or any type of media or device suitable for storing instructions and/or data.
  • the present invention includes software for controlling both the hardware of the general purpose/specialized computer or microprocessor, and for enabling the computer or microprocessor to interact with a human user or other mechanism utilizing the results of the present invention.
  • software may include, but is not limited to, device drivers, operating systems, execution environments/containers, and user applications.

Abstract

A system and method of authorization comprising associating at least one role with a resource, associating at least one capability with the at least one role, and determining whether to permit a resource operation based on the at least one capability.

Description

CLAIM OF PRIORITY
This application claims priority from ENHANCED PORTALS [FLAGSTAFF RELEASE], U.S. Provisional Application No. 60/386,487, Inventors: Phil Griffin, et al., filed on Oct. 24, 2001, and which is incorporated herein by reference.
CROSS REFERENCES
This application is related to the following applications which are hereby incorporated by reference in their entirety: SYSTEM AND METHOD FOR SERVER SECURITY AND ENTITLEMENT PROCESSING, U.S. application Ser. No. 09/878,536, Inventor: Paul Patrick, filed on Jun. 11, 2001; and SYSTEM AND METHOD FOR DELEGATED ADMINISTRATION, U.S. application Ser. No. 10/279,543, Inventors: Phil Griffin, et al., filed on Oct. 24, 2002.
This application is related to the following publications which are hereby incorporated by reference in their entirety: BEA WebLogic Portal™: Guide to Using the BEA E-Business Control Center (Version 4.0).
COPYRIGHT NOTICE
A portion of the disclosure of this patent document contains material which is subject to copyright protection. The copyright owner has no objection to the facsimile reproduction by anyone of the patent document or the patent disclosure, as it appears in the Patent and Trademark Office patent file or records, but otherwise reserves all copyright rights whatsoever.
FIELD OF THE DISCLOSURE
The present invention disclosure relates to the field of user authorization and in particular, role-based entitlements.
BACKGROUND
Computer authorization systems are typically permission-based. Once a user is authorized, usually by entering a password, the user is assigned a fixed set of permissions that govern the user's access to resources in an enterprise application. For example, a user may have permission to modify computer files belonging to the accounting department, but not the human resources department. A user's role in an organization will change over time, however, as the user acquires new skills and responsibilities. Access to resources should be tailored to each user's particular circumstances. Accordingly, a user's permissions need to be modified in order to reflect new privileges. When the number of users is great, administering fine-grained details of each individual user's permissions can create significant administrative overhead. As a result, a user's static permissions may not change in step with the user's role in an organization. This problem is exacerbated if privileges are dependent on less tangible factors, such as the time of day or prevailing conditions of a computer network. What is needed is a flexible, rules-based approach to authorization that allows users to dynamically acquire different privileges as their roles change over time.
BRIEF DESCRIPTION OF THE DRAWINGS
FIG. 1 is an illustration of a static authorization scheme.
FIG. 2 a is an illustration of a dynamic authorization scheme in accordance to one embodiment of the invention.
FIG. 2 b is the dynamic authorization scheme of FIG. 2 a in a different state.
FIG. 3 is a system in accordance to one embodiment of the invention.
DETAILED DESCRIPTION
The invention is illustrated by way of example and not by way of limitation in the figures of the accompanying drawings in which like references indicate similar elements. It should be noted that references to “an” or “one” embodiment in this disclosure are not necessarily to the same embodiment, and such references mean at least one.
In one embodiment, a resource operation request is sent from a client process (or client) to resource process (or resource). A client can be a task or process through which a user interacts with a resource (e.g., a web browser), or it may simply be an autonomous task or process. A resource is any part of a computer network that can be assigned permissions. For example, a resource can be data, a file, a database, a portion of a database, an object, an operating system resource, an administrative task, a graphical user interface, a process, a thread, a Java™ application, a Java™ applet, a Java™ servlet, or a Java™ Enterprise Bean. Java™ is an objected-oriented programming language and run-time environment available from Sun Microsystems, Inc. of Palo Alto, Calif. An access control mechanism intercepts the resource operation sent by the client to the resource and determines if it is permitted based on the client's entitlements. An entitlement is a business rule that grants or denies access to a resource. In one embodiment, determination of entitlements consists of dynamically associating roles with the client based on rules that take into account information about the client, information about the client's communication session, or the current state of the system. Roles are used to determine which operations the client is permitted to perform on a resource. In one embodiment, if one of the permitted operations matches the requested operation, the client is entitled to perform that operation.
In another embodiment, resources can be associated with portals. A portal is a feature-rich web site. It provides a point of access to enterprise data and applications, presenting a unified and personalized view of that information to employees, customers and business partners. Portals allow multiple web applications within a single web interface. In addition to regular web content that appears in a portal (e.g., text or graphics), portals provide the ability to display portlets—self-contained applications or content—all in a single web interface. Portals also support multiple pages with tab-based navigation, with each page containing its own content and portlets. One such system is the WebLogic Portal™, available from BEA Systems, Inc. of San Jose, Calif.
In one embodiment, clients can belong to one or more portal groups. Roles are used to dynamically determine which portal groups a client belongs to. Portal groups provide a means for organizing users with common characteristics into a single category. Portal groups also allow for the definition of different views of a portal for different portal groups, making it seem as if users in each group are looking at completely different web sites.
FIG. 1 is an illustration of an authorization scheme which utilizes static permissions. Client 1 can access resources A-C according to a fixed set of permissions. For example, resources A-C could be individual portlets on a single portal page. As illustrated in FIG. 1, client 1 can edit resource A, but can only view resource B, and has no access to resource C.
FIG. 2 a is an illustration of an authorization scheme in accordance with one embodiment of the invention. In FIG. 2 a, client 1 attempts to edit resource C. The edit operation is intercepted by process 2 which dynamically determines, at that point in time, what resources client 1 may edit. Client 1 is then given permission to edit only those resources. In the current state of the system, client 1 can only edit resource A. Therefore, the edit operation fails.
FIG. 2 b is the authorization scheme of FIG. 2 a in a different state. Again, client 1 attempts to edit resource C. The system is now in a different state and process 2 dynamically determines that client 1 can edit resources A and C, but not B. Therefore, the edit operation succeeds.
In one embodiment, to perform an operation on a resource, a client must be entitled to do so. An entitlement in one embodiment is a set of attributes: resource, role, capability, and permission. Given a resource, a role and a capability, a client can perform an operation on the resource corresponding to the capability if the permission allows it. Entitlements can be stored in database and retrieved or queried based on any of their attributes. In one embodiment, an administrative task can involve creating, removing, or modifying information pertaining to users in a system; creating, removing, or modifying attributes of portlets and portal pages; or altering the appearance and behavior of portlets and portal pages. In another embodiment, resource names can be organized in a taxonomy. A taxonomy provides a means of categorizing and uniquely identifying a resource and is hierarchical in nature. For example, a stock quote portlet “Quote” on the “web” portal page could be:
(1) myPortal/stockBroker/quotePortlet
In example (1), “myPortal” is the top level taxonomy name and serves to indicate that the resource is a portal named “myPortal”. The next part of the resource name, “stockBroker”, identifies a portal group within the portal “myPortal” consisting of stockbrokers. The third part of the resource name indicates a portlet “quotePortlet” for the portal group “stockBroker”. Thus, the resource name in (1) identifies a portlet “quotePortlet” within the portal group “stockbroker” and within portal “myPortal”.
In yet another embodiment, resources can be organized into resource groups wherein a single resource group name can represent a collection of resources. An entitlement specifying a resource group, rather than a single resource, can be extended such that the capability and permission attributes would apply to all resources referred to by the resource group name. If a resource operation specifies a resource rather than a resource group, the resource can be mapped to a resource group before determining which entitlements are applicable to the operation. Resource group names could likewise be organized in a taxonomy.
In one embodiment, a role is defined in terms of a rule comprised of one or more logical expressions. In another embodiment, a role rule can be based on evaluation of predicates. A predicate is a rule that evaluates to true or false. By way of a non-limiting example, predicates may include other predicates, logical operators (e.g., AND, NOT and OR), mathematical operations, method calls, calls to external systems, function calls, etc. In another embodiment, rules can be specified in plain English. For example:
(2) When all of these conditions apply, the client is an
    • ExperiencedJavaDeveloper:
      • Developer is equal to true
      • Skill level is equal to ‘High’
      • Preferred language is equal to ‘Java’
In example (2) above, the role that is being determined is “ExperiencedJavaDeveloper”. The predicate “Developer” may evaluate to true when, for instance, information contained in a user profile indicates that the client is a user in the software development department of an organization. Likewise, the other predicates (“Skill level”, “Preferred language”) could similarly be evaluated using information from the user profile. In another embodiment, the predicate can be based on the evaluation of information about a client's session (e.g., the state of communication between the client and other processes in the system). In yet another embodiment, session information can include information about a client's pattern of interaction with a graphical user interface, such as a portlet. It will be apparent to those skilled in the art that a predicate can be based on any information, whether the information is associated with a particular client or not. For example:
(3) When all of these conditions apply, the client is a SystemAdministrator:
    • TimeofDay is between 12:00am and 7:00am
    • SystemLoad is ‘Low’
    • AdminSkillLevel is at least 5
In example (3), two predicates (“TimeofDay” and “SystemLoad”) are based on information unrelated to a particular client. In this example, a client is allowed to be a system administrator if it is the middle of the night, the system is not busy, and the client has level 5 administration skills.
In one embodiment, an entitlement's capability is a operation that can be performed for a given role and on a given resource. For example, if the resource is a portlet, the capability can be “show”, “edit”, or “remove”. These operations control whether the portlet is initially displayed for the client (“show”), whether the client can edit information displayed in the portlet (“edit”), and whether the client can hide a portlet window (“remove”). It will be apparent to one skilled in the art that the capability can be any that is feasible for a given resource. An entitlement's permission corresponds to the capability and indicates whether the capability for the given resource and role is granted, denied or abstained. If the permission is granted, the operation should be permitted on the resource. If the permission is denied, the operation should not be permitted. Finally, if the permission is abstain, then the operation is not explicitly granted or denied. It will be apparent to one skilled in the art that other permissions are possible.
FIG. 3 is a system in accordance with one embodiment of the invention. Client 1 initiates a resource operation directed to resource 3. Client 1 could be, for example, a user interacting with a portal in an attempt to edit information displayed in a portlet named “accountProfilePortlet”. This assumes that client 1 had permission to view the profile portlet in the first place. The resource operation is intercepted by access controller 2. In one embodiment, the resource operation can contain information about a user (e.g., a user identifier or a user profile, characteristics such as gender and age, etc.). In another embodiment, the resource operation can contain information about the session or a hypertext transfer protocol (“HTTP”) request. HTTP request information can pertain to character encoding, remote user, authorization scheme, content length, server port, context path, request URI, request method, scheme, servlet path, content type, remote host, request protocol, locale, server name, remote address, query string, path information, etc. In yet another embodiment, the resource operation can contain any other kind of information relevant to evaluating role rule predicates. Access controller 2 directs role mapper 5 to determine which roles correspond to client 1 at that point in time. Role mapper 5 uses role rules database 6 to dynamically determine which roles apply to the client. If no role is found, a default role of “everyone” is assumed. Suppose, for example, the following roles applied:
    • optionTrader
    • registeredUser
      Access controller 2 would then direct the decision module 4 to find entitlements matching the roles and the resource. If one or more entitlements are found, decision module 4 uses the entitlements to determine if the operation is permitted for client 1. For example, assume the decision module found the following entitlements as shown in Table 1:
TABLE 1
Entitlements
Resource Role Capability Permission
accountProfilePortlet optionTrader show grant
accountProfilePortlet optionTrader edit grant
accountProfilePortlet registeredUser edit deny
accountProfilePortlet optionTrader show grant
accountProfilePortlet optionTrader edit grant
accountProfilePortlet registeredUser edit deny
accountProfilePortlet everyone show deny
accountProfilePortlet everyone edit deny
In one embodiment, entitlements that have capabilities compatible with the requested operation are considered. In this case, there is a conflict between two roles. The role optionTrader allows editing of the accountProfilePortlet whereas the role registeredUser does not. (The default “everyone” roles are ignored in this case since other roles have been established.) In one embodiment, decision module 4 employs an optimistic access scheme by logically OR'ing the entitlements and would thus grant permission to edit the portlet. In another embodiment, decision module 4 logically AND's the entitlements and thus would deny permission to edit the portlet. In yet another embodiment, decision module 4 can use heuristics to determine the permission or rely on other modules to make the decision on its behalf.
In one embodiment, performance can be improved through caching techniques. For example, access controller 2 can cache recently determined roles for clients and thereby forgo utilization of role mapper 5. Of course, roles that are dependent on time-sensitive predicates would have to be reevaluated. Alternatively, role mapper 5 can do the same. Cached roles can automatically be removed from the cache through an aging process or when the cache is full. In another embodiment, access controller 2 or decision module 4 can cache recently determined entitlements. In this way, access controller 2 can forego utilizing role mapper 5 and decision module 4 when cached information is considered consistent with role rules and entitlements.
One embodiment maybe implemented using a conventional general purpose or a specialized digital computer or microprocessor(s) programmed according to the teachings of the present disclosure, as will be apparent to those skilled in the computer art. Appropriate software coding can readily be prepared by skilled programmers based on the teachings of the present disclosure, as will be apparent to those skilled in the software art. The invention may also be implemented by the preparation of integrated circuits or by interconnecting an appropriate network of conventional component circuits, as will be readily apparent to those skilled in the art.
One embodiment includes a computer program product which is a storage medium (media) having instructions stored thereon/in which can be used to program a computer to perform any of the features presented herein. The storage medium can include, but is not limited to, any type of disk including floppy disks, optical discs, DVD, CD-ROMs, microdrive, and magneto-optical disks, ROMs, RAMs, EPROMs, EEPROMs, DRAMs, VRAMs, flash memory devices, magnetic or optical cards, nanosystems (including molecular memory ICs), or any type of media or device suitable for storing instructions and/or data.
Stored on any one of the computer readable medium (media), the present invention includes software for controlling both the hardware of the general purpose/specialized computer or microprocessor, and for enabling the computer or microprocessor to interact with a human user or other mechanism utilizing the results of the present invention. Such software may include, but is not limited to, device drivers, operating systems, execution environments/containers, and user applications.
The foregoing description of the preferred embodiments of the present invention has been provided for the purposes of illustration and description. It is not intended to be exhaustive or to limit the invention to the precise forms disclosed. Many modifications and variations will be apparent to the practitioner skilled in the art. Embodiments were chosen and described in order to best describe the principles of the invention and its practical application, thereby enabling others skilled in the art to understand the invention, the various embodiments and with various modifications that are suited to the particular use contemplated. It is intended that the scope of the invention be defined by the following claims and their equivalents.

Claims (80)

1. A method of authorization, comprising:
receiving a resource operation from a client during a session;
determining, in response to receiving the resource operation from the client, at least one role that applies to the client based on evaluating at least one role rule including at least one predicate and at least one logical operator using information about the client's pattern of interaction with a portlet;
dynamically associating the at least one role with the client;
associating at least one entitlement with the at least one role;
determining whether to permit the resource operation on a resource identified in the resource operation based on the at least one entitlement; and
wherein evaluating the at least one role rule determines the at least one role.
2. The method of claim 1 wherein:
the at least one role rule is specified in plain language.
3. The method of claim 1 wherein:
evaluating the at least one role rule uses user information.
4. The method of claim 1 wherein:
the at least one role is everyone.
5. The method of claim 1 wherein:
the resource is one of a portal page, a portlet, and an administrative task.
6. The method of claim 1 wherein:
the resource operation is one of show, edit and remove.
7. The method of claim 1 wherein:
the resource is a resource group.
8. The method of claim 1 wherein:
determining whether to permit the resource operation is based on an optimistic access scheme.
9. The method of claim 1 wherein:
determining the at least one role that applies to the client includes retrieving the at least one role from a cache.
10. The method of claim 1 wherein:
associating the at least one entitlement with the at least one role includes retrieving the at least one entitlement from a cache.
11. A method of authorization, comprising:
intercepting a resource operation from a client during a session, the resource operation identifying a resource;
determining, in response to intercepting the resource operation from the client, at least one role that applies to the client based on evaluating at least one role rule including at least one predicate and at least one logical operator using information about the client's pattern of interaction with a portlet;
associating at least one entitlement with the at least one role;
dynamically associating the at least one role with the client;
allowing the resource operation on the resource identified in the resource operation if the resource operation is permitted based on the at least one entitlement; and
wherein evaluating the at least one role rule determines the at least one role.
12. The method of claim 11 wherein:
the at least one role rule is specified in plain language.
13. The method of claim 11 wherein:
evaluating the at least one role rule uses user information.
14. The method of claim 11 wherein:
the at least one role is everyone.
15. The method of claim 11 wherein:
the resource is one of a portal page, a portlet, and an administrative task.
16. The method of claim 11 wherein:
the resource operation is one of show, edit and remove.
17. The method of claim 11 wherein:
the resource is a resource group.
18. The method of claim 11 wherein:
determining whether to permit the resource operation is based on an optimistic access scheme.
19. The method of claim 11 wherein:
determining the at least one role that applies to the client includes retrieving the at least one role from a cache.
20. The method of claim 11 wherein:
associating the at least one entitlement with the at least one role includes retrieving the at least one entitlement from a cache.
21. A method of authorization, comprising:
sending a resource request from a client to an access controller during a session, wherein the access controller associates at least one entitlement with the resource request and at least one role; and
sending an indication of whether the resource request is permitted on a resource identified in the resource request from the access controller to the client based on the at least one entitlement;
wherein associating the at least one entitlement with the resource request and the at least one role includes determining, in response to sending the resource request from the client to the access controller, the at least one role that applies to the client based on evaluating at least one role rule including at least one predicate and at least one logical operator using information about the client's pattern of interaction with a portlet;
wherein associating the at least one entitlement with the resource request further includes dynamically associating the at least one role with the client; and
wherein evaluating the at least one role rule determines the at least one role.
22. The method of claim 21 wherein:
the at least one role rule is specified in plain language.
23. The method of claim 21 wherein:
evaluating the at least one role rule uses user information.
24. The method of claim 21 wherein:
the at least one role is everyone.
25. The method of claim 21 wherein:
the resource is one of a portal page, a portlet, and an administrative task.
26. The method of claim 21 wherein:
the resource request includes a resource operation, wherein the resource operation is one of show, edit and remove.
27. The method of claim 21 wherein:
the resource is a resource group.
28. The method of claim 21 wherein:
determining whether to permit the resource request is based on an optimistic access scheme.
29. The method of claim 21 wherein:
determining the at least one role that applies to the client includes retrieving the at least one role from a cache.
30. The method of claim 21 wherein:
associating the at least one entitlement with the resource request includes retrieving the at least one entitlement from a cache.
31. A system for authorization, comprising:
at least one microprocessor;
an access controller adapted to accept a resource operation from a client during a session;
a role mapper coupled to the access controller, the role mapper adapted to determine, in response to accepting the resource operation from the client, at least one role that applies to the client based on evaluating at least one role rule including at least one predicate and at least one logical operator using information about the client's pattern of interaction with a portlet, and to dynamically associate the at least one role with the client;
a decision module coupled to the access controller, the decision module adapted to associate the at least one role with at least one entitlement and to determine whether access to a resource specified in the resource operation is permitted based upon the at least one role and the at least one entitlement; and
wherein evaluating the at least one role rule determines the at least one role.
32. The system of claim 31 wherein:
the at least one role rule is specified in plain language.
33. The system of claim 31 wherein: evaluating the at least one role rule uses user information.
34. The system of claim 31 wherein:
the at least one role is everyone.
35. The system of claim 31 wherein:
the resource is one of a portal page, a portlet, and an administrative task.
36. The system of claim 31 wherein:
the resource operation is one of show, edit and remove.
37. The system of claim 31 wherein:
the resource is a resource group.
38. The system of claim 31 wherein:
determining whether to permit a resource operation is based on an optimistic access scheme.
39. The system of claim 31 wherein:
determining the at least one role that applies to the client includes retrieving the at least one role from a cache.
40. The system of claim 31 wherein:
the access controller is adapted to associate at least one entitlement with the at least one role; p1 wherein associating the at least one entitlement with the at least one role includes retrieving the at least one entitlement from a cache.
41. A system for authorization, comprising:
at least one microprocessor;
a client adapted to send a resource operation to an access controller during a session;
wherein the access controller is coupled to a role mapper, the role mapper adapted to determine, in response to the client sending the resource operation to the access controller, at least one role that applies to the client based on evaluating at least one role rule including at least one predicate and at least one logical operator using information about the client's pattern of interaction with a portlet, and to dynamically associate the at least one role with the client;
wherein the access controller is coupled to an access decision module, the access decision module adapted to associate the at least one role with at least one entitlement and to determine whether access to a resource specified in the resource operation is permitted based upon the at least one entitlement; and
wherein evaluating the at least one role rule determines the at least one role.
42. The system of claim 41 wherein:
the at least one role rule is specified in plain language.
43. The system of claim 41 wherein: evaluating the at least one role rule uses user information.
44. The system of claim 41 wherein:
the at least one role is everyone.
45. The system of claim 41 wherein:
the resource is one of a portal page, a portlet, and an administrative task.
46. The system of claim 41 wherein:
the resource operation is one of show, edit and remove.
47. The system of claim 41 wherein:
the resource is a resource group.
48. The system of claim 41 wherein:
determining whether to permit access to the resource is based on an optimistic access scheme.
49. The system of claim 41 wherein:
determining the at least one role that applies to the client includes retrieving the at least one role from a cache.
50. The system of claim 41 further comprising wherein:
the access controller is adapted to associate at least one entitlement with the at least one role;
wherein associating the at least one entitlement with the at least one role includes retrieving the at least one entitlement from a cache.
51. A system for authorization, comprising:
at least one microprocessor;
a client;
an access controller adapted to accept a resource operation from the client during a session, wherein the resource operation identifies a resource;
a role mapper coupled to the access controller, adapted to determine, in response to the access controller accepting the resource operation from the client, at least one role that applies to the client based on evaluating at least one role rule including at least one predicate and at least one logical operator using information about the client's pattern of interaction with a portlet, and to dynamically associate the at least one role with the client;
an access decision module coupled to the access controller, the access decision module adapted to associate the at least one role with at least one entitlement, and to determine whether access to a resource specified in the resource operation is permitted based upon the at least one entitlement; and
wherein evaluating the at least one role rule determines the at least one role.
52. The system of claim 51 wherein:
the at least one role rule is specified in plain language.
53. The system of claim 51 wherein: evaluating the at least one role rule uses user information.
54. The system of claim 51 wherein:
the at least one role is everyone.
55. The system of claim 51 wherein:
the resource is one of a portal page, a portlet, and an administrative task.
56. The system of claim 51 wherein:
the resource operation is one of show, edit and remove.
57. The system of claim 51 wherein:
the resource is a resource group.
58. The system of claim 51 wherein:
determining whether to permit access to the resource is based on an optimistic access scheme.
59. The system of claim 51 wherein:
determining the at least one role that applies to the client includes retrieving the at least one role from a cache.
60. The system of claim 51 wherein:
the access controller is adapted to associate at least one entitlement with the at least one role;
wherein associating the at least one entitlement with the at least one role includes retrieving the at least one entitlement from a cache.
61. A system for authorization, comprising:
at least one microprocessor;
a means for sending a resource operation from a client during a session;
a means for determining, in response to sending the resource operation from the client, at least one role that applies the client based on evaluating at least one role rule including at least one predicate and at least one logical operator using information about the client's pattern of interaction with a portlet, and for dynamically associating the at least one role with the client;
a means for associating at least one entitlement with the at least one role;
a means for determining whether to permit a resource operation on a resource identified by the resource operation based on the at least one entitlement; and
wherein evaluating the at least one role rule determines the at least one role.
62. The system of claim 61 wherein:
the at least one role rule is specified in plain language.
63. The system of claim 61 wherein: evaluating the at least one role rule uses user information.
64. The system of claim 61 wherein:
the at least one role is everyone.
65. The system of claim 61 wherein:
the resource is one of a portal page, a portlet, and an administrative task.
66. The system of claim 61 wherein:
the resource operation is one of show, edit and remove.
67. The system of claim 61 wherein:
the resource is a resource group.
68. The system of claim 61 wherein:
determining whether to permit a resource operation is based on an optimistic access scheme.
69. The system of claim 61 wherein:
determining the at least one role that applies to the client includes retrieving the at least one role from a cache.
70. The system of claim 61 wherein:
associating the at least one entitlement with the at least one role includes retrieving the at least one entitlement from a cache.
71. A storage medium having instructions stored thereon that when executed by a processor cause a system to:
send a resource operation from a client during a session;
determine, in response to sending the resource operation from the client, at least one role that applies to the client based on evaluating at least one role rule including at least one predicate and at least one logical operator using information about the client's pattern of interaction with a portlet;
dynamically associate the at least one role with the client;
associate at least one entitlement with the at least one role;
determine whether to permit a resource operation on a resource identified by the resource operation based on the at least one entitlement; and
wherein evaluating the at least one role rule determines the at least one role.
72. The storage medium of claim 71 wherein:
the at least one role rule is specified in plain language.
73. The storage medium of claim 71 wherein: evaluating the at least one role rule uses user information.
74. The storage medium of claim 71 wherein:
the at least one role is everyone.
75. The storage medium of claim 71 wherein:
the resource is one of a portal page, a portlet, and an administrative task.
76. The storage medium of claim 71 wherein:
the resource operation is one of show, edit and remove.
77. The storage medium of claim 71 wherein:
the resource is a resource group.
78. The storage medium of claim 71 wherein:
determining whether to permit the resource operation is based on an optimistic access scheme.
79. The storage medium of claim 71 wherein:
determining the at least one role that applies to the client includes retrieving the at least one role from a cache.
80. The storage medium of claim 71 wherein:
associating the at least one entitlement with the at least one role includes retrieving the at least one entitlement from a cache.
US10/279,564 2001-10-24 2002-10-24 System and method for rule-based entitlements Active 2024-10-21 US7451477B2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US10/279,564 US7451477B2 (en) 2001-10-24 2002-10-24 System and method for rule-based entitlements

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US38648701P 2001-10-24 2001-10-24
US10/279,564 US7451477B2 (en) 2001-10-24 2002-10-24 System and method for rule-based entitlements

Publications (2)

Publication Number Publication Date
US20030105974A1 US20030105974A1 (en) 2003-06-05
US7451477B2 true US7451477B2 (en) 2008-11-11

Family

ID=23525780

Family Applications (12)

Application Number Title Priority Date Filing Date
US10/279,696 Abandoned US20030145275A1 (en) 2001-10-24 2002-10-24 System and method for portal rendering
US10/279,951 Active 2024-12-10 US7240280B2 (en) 2001-10-24 2002-10-24 System and method for application flow integration in a portal framework
US10/279,450 Expired - Lifetime US7451163B2 (en) 2001-10-24 2002-10-24 Data synchronization
US10/279,449 Active 2024-05-23 US7367014B2 (en) 2001-10-24 2002-10-24 System and method for XML data representation of portlets
US10/279,543 Abandoned US20030115292A1 (en) 2001-10-24 2002-10-24 System and method for delegated administration
US10/279,564 Active 2024-10-21 US7451477B2 (en) 2001-10-24 2002-10-24 System and method for rule-based entitlements
US10/279,542 Abandoned US20030117437A1 (en) 2001-10-24 2002-10-24 Portal administration tool
US10/279,663 Expired - Lifetime US7472342B2 (en) 2001-10-24 2002-10-24 System and method for portal page layout
US11/112,440 Active 2024-05-17 US7516167B2 (en) 2001-10-24 2005-04-22 Data synchronization
US11/112,789 Abandoned US20050187993A1 (en) 2001-10-24 2005-04-22 Data synchronization
US11/115,596 Abandoned US20050187978A1 (en) 2001-10-24 2005-04-27 System and method for portal rendering
US11/752,844 Abandoned US20070214421A1 (en) 2001-10-24 2007-05-23 System and method for application flow integration in a portal framework

Family Applications Before (5)

Application Number Title Priority Date Filing Date
US10/279,696 Abandoned US20030145275A1 (en) 2001-10-24 2002-10-24 System and method for portal rendering
US10/279,951 Active 2024-12-10 US7240280B2 (en) 2001-10-24 2002-10-24 System and method for application flow integration in a portal framework
US10/279,450 Expired - Lifetime US7451163B2 (en) 2001-10-24 2002-10-24 Data synchronization
US10/279,449 Active 2024-05-23 US7367014B2 (en) 2001-10-24 2002-10-24 System and method for XML data representation of portlets
US10/279,543 Abandoned US20030115292A1 (en) 2001-10-24 2002-10-24 System and method for delegated administration

Family Applications After (6)

Application Number Title Priority Date Filing Date
US10/279,542 Abandoned US20030117437A1 (en) 2001-10-24 2002-10-24 Portal administration tool
US10/279,663 Expired - Lifetime US7472342B2 (en) 2001-10-24 2002-10-24 System and method for portal page layout
US11/112,440 Active 2024-05-17 US7516167B2 (en) 2001-10-24 2005-04-22 Data synchronization
US11/112,789 Abandoned US20050187993A1 (en) 2001-10-24 2005-04-22 Data synchronization
US11/115,596 Abandoned US20050187978A1 (en) 2001-10-24 2005-04-27 System and method for portal rendering
US11/752,844 Abandoned US20070214421A1 (en) 2001-10-24 2007-05-23 System and method for application flow integration in a portal framework

Country Status (6)

Country Link
US (12) US20030145275A1 (en)
EP (1) EP1442397A4 (en)
JP (1) JP4173447B2 (en)
CN (1) CN100504853C (en)
AU (1) AU2002336667B2 (en)
WO (8) WO2003036505A1 (en)

Cited By (25)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050010781A1 (en) * 2003-04-30 2005-01-13 Patricia Harper Extranet service site and method for using same
US20060085838A1 (en) * 2004-10-14 2006-04-20 Microsoft Corporation Method and system for merging security policies
US20060235935A1 (en) * 2002-10-04 2006-10-19 International Business Machines Corporation Method and apparatus for using business rules or user roles for selecting portlets in a web portal
US20070084915A1 (en) * 2005-10-18 2007-04-19 Weipeng Yan Identifying spurious requests for information
US20070288389A1 (en) * 2006-06-12 2007-12-13 Vaughan Michael J Version Compliance System
US20080016580A1 (en) * 2006-07-11 2008-01-17 Royyuru Dixit Role-based access in a multi-customer computing environment
US20080046825A1 (en) * 2006-06-09 2008-02-21 International Business Machines Corporation Method, Apparatus or Software for Providing a Portal Comprising One or More Portlets for Displaying Data
US20080066049A1 (en) * 2006-09-12 2008-03-13 Sandeep Jain Method for enforcing change policy based on project state
US20080270174A1 (en) * 2003-03-17 2008-10-30 David Schlesinger Entitlment Security and Control
US20090133100A1 (en) * 2007-11-21 2009-05-21 Jan Buchwald Access control on dynamically instantiated portal applications
US20090287707A1 (en) * 2008-05-15 2009-11-19 International Business Machines Corporation Method to Manage Inventory Using Degree of Separation Metrics
US20090313677A1 (en) * 2008-06-12 2009-12-17 International Business Machines Corporation Mathematical definition of roles and authorizations in RBAC system
US20110153555A1 (en) * 2009-12-22 2011-06-23 International Business Machines Corporation Adapting a Workflow
US8312516B1 (en) * 2006-06-20 2012-11-13 Workday, Inc. Security permissions with dynamic definition
US20130085800A1 (en) * 2011-10-03 2013-04-04 Sap Ag System and Method of Business Risk Based Authorization
US8725767B1 (en) * 2010-03-31 2014-05-13 Emc Corporation Multi-dimensional object model for storage management
US9020883B2 (en) 2012-02-22 2015-04-28 Oracle International Corporation System and method to provide BPEL support for correlation aggregation
US9514286B2 (en) 2008-06-05 2016-12-06 International Business Machines Corporation Context-based security policy evaluation using weighted search trees
US10037197B2 (en) 2013-03-15 2018-07-31 Oracle International Corporation Flexible microinstruction system for constructing microprograms which execute tasks, gateways, and events of BPMN models
US10257184B1 (en) * 2014-09-29 2019-04-09 Amazon Technologies, Inc. Assigning policies for accessing multiple computing resource services
US10607022B2 (en) 2018-02-13 2020-03-31 Bank Of America Corporation Vertically integrated access control system for identifying and remediating flagged combinations of capabilities resulting from user entitlements to computing resources
US10659469B2 (en) 2018-02-13 2020-05-19 Bank Of America Corporation Vertically integrated access control system for managing user entitlements to computing resources
US10986097B2 (en) 2018-04-30 2021-04-20 Bank Of America Corporation System for using a distributed ledger to manage user entitlements to computing resources
US11108882B2 (en) 2019-12-09 2021-08-31 Bank Of America Corporation System for assessing and enhancing role defining parameters associated with access to resources in a network
US11165787B2 (en) 2019-08-26 2021-11-02 Bank Of America Corporation System for authorization of electronic data access and processing functions within a distributed server network

Families Citing this family (559)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7051069B2 (en) * 2000-09-28 2006-05-23 Bea Systems, Inc. System for managing logical process flow in an online environment
US20030217333A1 (en) * 2001-04-16 2003-11-20 Greg Smith System and method for rules-based web scenarios and campaigns
US7499948B2 (en) * 2001-04-16 2009-03-03 Bea Systems, Inc. System and method for web-based personalization and ecommerce management
US7392546B2 (en) * 2001-06-11 2008-06-24 Bea Systems, Inc. System and method for server security and entitlement processing
US7290030B2 (en) * 2001-07-13 2007-10-30 Rockwell Automation Technologies, Inc. Internet object based interface for industrial controller
AU2002336667B2 (en) * 2001-10-24 2007-06-21 Oracle International Corporation Data synchronization
US7062511B1 (en) 2001-12-31 2006-06-13 Oracle International Corporation Method and system for portal web site generation
US7313601B2 (en) * 2002-03-28 2007-12-25 International Business Machines Corporation Adaptive control system and method for optimized invocation of portlets
AU2003221486A1 (en) * 2002-03-28 2003-10-13 International Business Machines Corporation System and method for hierarchical layout specialization
US7917855B1 (en) * 2002-04-01 2011-03-29 Symantec Operating Corporation Method and apparatus for configuring a user interface
US7596611B1 (en) 2002-04-01 2009-09-29 Veritas Operating Corporation Method and apparatus for maintaining information for use in the configuration of a client
US7076567B1 (en) * 2002-04-25 2006-07-11 Oracle International Corporation Simplified application object data synchronization for optimized data storage
US7606881B2 (en) * 2002-04-25 2009-10-20 Oracle International Corporation System and method for synchronization of version annotated objects
US7496687B2 (en) * 2002-05-01 2009-02-24 Bea Systems, Inc. Enterprise application platform
US7725560B2 (en) * 2002-05-01 2010-05-25 Bea Systems Inc. Web service-enabled portlet wizard
US20040010598A1 (en) * 2002-05-01 2004-01-15 Bea Systems, Inc. Portal setup wizard
US7548957B1 (en) 2002-05-07 2009-06-16 Oracle International Corporation Method and mechanism for a portal website architecture
US7277924B1 (en) 2002-05-07 2007-10-02 Oracle International Corporation Method and mechanism for a portal website architecture
US7607137B2 (en) * 2002-07-01 2009-10-20 Sap Ag Integration of heterogeneous applications
US20040243471A1 (en) * 2002-07-17 2004-12-02 Salmen Larry J. Process and system for authoring electronic information by filling in template pattern with local presentation information
CA2406713C (en) * 2002-10-04 2009-06-30 Ibm Canada Limited-Ibm Canada Limitee Method and apparatus for relaying session information from a portal server
CA2406876A1 (en) * 2002-10-04 2004-04-04 Ibm Canada Limited-Ibm Canada Limitee Method and apparatus for managing a collection of portlets in a portal server
CA2406569C (en) * 2002-10-04 2011-03-22 Ibm Canada Limited-Ibm Canada Limitee Method and apparatus for enabling associated portlets of a web portal to collaborate for synchronized content display
US7787489B2 (en) * 2002-10-07 2010-08-31 Oracle International Corporation Mobile data distribution
TWI231669B (en) * 2002-11-02 2005-04-21 Ibm System and method for using portals by mobile devices in a disconnected mode
US20040090969A1 (en) * 2002-11-12 2004-05-13 International Business Machines Corporation Portlet data sharing system, method, and program product
US7831905B1 (en) * 2002-11-22 2010-11-09 Sprint Spectrum L.P. Method and system for creating and providing web-based documents to information devices
US8001463B2 (en) * 2002-12-02 2011-08-16 Oracle International Corporation Web page communications using parameters and events
US7676542B2 (en) * 2002-12-02 2010-03-09 Sap Ag Establishing a collaboration environment
US7448024B2 (en) * 2002-12-12 2008-11-04 Bea Systems, Inc. System and method for software application development in a portal environment
US8209259B2 (en) * 2003-01-09 2012-06-26 Adp Dealer Services, Inc. Software business platform with networked, association-based business entity access management
US7506327B2 (en) * 2003-02-06 2009-03-17 Bea Systems, Inc. System and method for manipulating and automatically updating enterprise application deployment descriptors
US7653930B2 (en) 2003-02-14 2010-01-26 Bea Systems, Inc. Method for role and resource policy management optimization
US8831966B2 (en) 2003-02-14 2014-09-09 Oracle International Corporation Method for delegated administration
US7591000B2 (en) 2003-02-14 2009-09-15 Oracle International Corporation System and method for hierarchical role-based entitlements
US6917975B2 (en) * 2003-02-14 2005-07-12 Bea Systems, Inc. Method for role and resource policy management
JP2004264905A (en) * 2003-02-17 2004-09-24 Matsushita Electric Ind Co Ltd Method for controlling distributed computer system and distributed computer control system
US7293286B2 (en) 2003-02-20 2007-11-06 Bea Systems, Inc. Federated management of content repositories
US7840614B2 (en) * 2003-02-20 2010-11-23 Bea Systems, Inc. Virtual content repository application program interface
US20040167868A1 (en) * 2003-02-20 2004-08-26 Bea Systems, Inc. System and method for a virtual content repository
US20040167989A1 (en) * 2003-02-25 2004-08-26 Jeff Kline Method and system for creating and managing a website
US7376754B2 (en) * 2003-02-27 2008-05-20 Bea Systems, Inc. System and method for communications between servers in a cluster
US8225234B2 (en) * 2003-02-28 2012-07-17 Oracle International Corporation Method for utilizing look and feel in a graphical user interface
US7810036B2 (en) * 2003-02-28 2010-10-05 Bea Systems, Inc. Systems and methods for personalizing a portal
US7467414B2 (en) * 2003-03-17 2008-12-16 Intel Corporation Entitlement security and control for information system entitlement
JP2006523341A (en) * 2003-03-17 2006-10-12 ロバート・ダント Network-based communication system
US7685515B2 (en) * 2003-04-04 2010-03-23 Netsuite, Inc. Facilitating data manipulation in a browser-based user interface of an enterprise business application
US7685010B2 (en) 2003-04-04 2010-03-23 Netsuite, Inc. Concise communication of real-time business information in an enterprise network
US7694000B2 (en) * 2003-04-22 2010-04-06 International Business Machines Corporation Context sensitive portlets
US7461395B2 (en) * 2003-05-06 2008-12-02 Oracle International Corporation Distributed capability-based authorization architecture using roles
US20070186102A1 (en) * 2003-05-06 2007-08-09 Ng Raymond K Method and apparatus for facilitating fine-grain permission management
US7389472B2 (en) * 2003-05-07 2008-06-17 Microsoft Corporation Connected templates in connection with a content management server system or the like
DE10320711A1 (en) * 2003-05-08 2004-12-16 Siemens Ag Method and arrangement for setting up and updating a user interface for accessing information pages in a data network
US7464385B1 (en) * 2003-05-09 2008-12-09 Vignette Corporation Method and system for performing bulk operations on transactional items
US7941453B1 (en) * 2003-05-09 2011-05-10 Vignette Software Llc Method and system for deployment of content using proxy objects
US7526770B2 (en) * 2003-05-12 2009-04-28 Microsoft Corporation System and method for employing object-based pipelines
US20040230901A1 (en) * 2003-05-15 2004-11-18 International Business Machines Corporation Portlet style conformity on pervasive agents
US7146563B2 (en) * 2003-05-29 2006-12-05 International Business Machines Corporation Maintaining screen and form state in portlets
US7281217B2 (en) * 2003-05-30 2007-10-09 International Business Machines Corporation System and method for user driven interactive application integration
US7237227B2 (en) * 2003-06-30 2007-06-26 Siebel Systems, Inc. Application user interface template with free-form layout
US20050005237A1 (en) * 2003-07-03 2005-01-06 Rail Peter D. Method for maintaining a centralized, multidimensional master index of documents from independent repositories
JP4709481B2 (en) * 2003-07-31 2011-06-22 インターナショナル・ビジネス・マシーンズ・コーポレーション Server, information processing method and program
US7472413B1 (en) 2003-08-11 2008-12-30 F5 Networks, Inc. Security for WAP servers
US8612852B2 (en) * 2003-09-08 2013-12-17 Oracle International Corporation Omniportlet-declaratively publish data in a portal without code
US7231598B1 (en) * 2003-09-18 2007-06-12 Microsoft Corporation User interface for editing documents containing markup language
US7895234B2 (en) * 2003-09-22 2011-02-22 Rockwell Automation Technologies, Inc. Systems and methods for sharing portal configurations
US20050251851A1 (en) * 2003-10-10 2005-11-10 Bea Systems, Inc. Configuration of a distributed security system
US20050081055A1 (en) * 2003-10-10 2005-04-14 Bea Systems, Inc. Dynamically configurable distributed security system
US20050251852A1 (en) * 2003-10-10 2005-11-10 Bea Systems, Inc. Distributed enterprise security system
US20050257245A1 (en) * 2003-10-10 2005-11-17 Bea Systems, Inc. Distributed security system with dynamic roles
US7793215B2 (en) * 2003-10-15 2010-09-07 International Business Machines Corporation Indicating focus in a portal environment
JP2005165813A (en) * 2003-12-04 2005-06-23 Matsushita Electric Ind Co Ltd Method for managing distributed computer system
US8825906B2 (en) * 2003-12-12 2014-09-02 International Business Machines Corporation Method and system for named collaborative spaces in a collaborative computing environment
US7725435B1 (en) * 2003-12-15 2010-05-25 Cisco Technology, Inc. Method and apparatus for a dynamic web portal with content distributed network content availability and user locality
CN100337420C (en) * 2003-12-17 2007-09-12 财团法人资讯工业策进会 Verifying and testing method and device for data synchronizing system
US7340639B1 (en) * 2004-01-08 2008-03-04 Network Appliance, Inc. System and method for proxying data access commands in a clustered storage system
US7441229B2 (en) * 2004-02-10 2008-10-21 International Business Machines Corporations Model driven portlet development method, system and program product
US7376739B2 (en) * 2004-02-11 2008-05-20 International Business Machines Corporation Persistence of inter-application communication patterns and behavior under user control
JP4539115B2 (en) * 2004-02-25 2010-09-08 ソニー株式会社 Information processing apparatus, information processing method, and computer program
US7444633B2 (en) * 2004-03-05 2008-10-28 International Business Machines Corporation Federating legacy/remote content into a central network console
US7493563B2 (en) * 2004-03-05 2009-02-17 International Business Machines Corporation Using content aggregation to build administration consoles
US20050223081A1 (en) * 2004-04-05 2005-10-06 Mcmahan Paul F Portal including detachable and reattachable portlets
US7565538B2 (en) * 2004-04-05 2009-07-21 Microsoft Corporation Flow token
US8327290B2 (en) * 2004-04-06 2012-12-04 International Business Machines Corporation User task interface in a web application
US7774601B2 (en) 2004-04-06 2010-08-10 Bea Systems, Inc. Method for delegated administration
US20060041558A1 (en) * 2004-04-13 2006-02-23 Mccauley Rodney System and method for content versioning
US7236989B2 (en) * 2004-04-13 2007-06-26 Bea Systems, Inc. System and method for providing lifecycles for custom content in a virtual content repository
US20050251503A1 (en) * 2004-04-13 2005-11-10 Bea Systems, Inc. System and method for content and schema versioning
US20050251512A1 (en) * 2004-04-13 2005-11-10 Bea Systems, Inc. System and method for searching a virtual content repository
US7246138B2 (en) * 2004-04-13 2007-07-17 Bea Systems, Inc. System and method for content lifecycles in a virtual content repository that integrates a plurality of content repositories
US20060028252A1 (en) * 2004-04-13 2006-02-09 Bea Systems, Inc. System and method for content type management
EP1591928A1 (en) * 2004-04-30 2005-11-02 Daktronics, Inc. System and process for transmission and processing of gaming information across a wide network
US7487443B2 (en) * 2004-04-30 2009-02-03 International Business Machines Corporation Portal page view layout based on weights
EP1594279A1 (en) * 2004-05-07 2005-11-09 Hewlett-Packard Development Company, L.P. Access control in a web application using event filtering
US7761865B2 (en) * 2004-05-11 2010-07-20 Sap Ag Upgrading pattern configurations
US20050256906A1 (en) * 2004-05-14 2005-11-17 Bea Systems, Inc. Interface for portal and webserver administration-efficient updates
US20050257154A1 (en) * 2004-05-14 2005-11-17 Bea Systems, Inc. Graphical association of elements for portal and webserver administration
US20050256899A1 (en) * 2004-05-14 2005-11-17 Bea Systems, Inc. System and method for representing hierarchical data structures
US20050257172A1 (en) * 2004-05-14 2005-11-17 Bea Systems, Inc. Interface for filtering for portal and webserver administration
US8181112B2 (en) * 2004-05-21 2012-05-15 Oracle International Corporation Independent portlet rendering
US7774378B2 (en) 2004-06-04 2010-08-10 Icentera Corporation System and method for providing intelligence centers
US9330187B2 (en) 2004-06-22 2016-05-03 International Business Machines Corporation Persuasive portlets
US7814426B2 (en) * 2004-06-30 2010-10-12 Sap Aktiengesellschaft Reusable component in a collaboration workspace
US7558843B2 (en) 2004-07-12 2009-07-07 Netsuite, Inc. Phased rollout of version upgrades in web-based business information systems
US9009313B2 (en) 2004-07-12 2015-04-14 NetSuite Inc. Simultaneous maintenance of multiple versions of a web-based business information system
US7552401B2 (en) * 2004-08-13 2009-06-23 International Business Machines Corporation Detachable and reattachable portal pages
US7840707B2 (en) * 2004-08-18 2010-11-23 International Business Machines Corporation Reverse proxy portlet with rule-based, instance level configuration
US7500181B2 (en) * 2004-08-31 2009-03-03 International Business Machines Corporation Method for updating a portal page
US20060047777A1 (en) * 2004-09-01 2006-03-02 International Business Machines Corporation Enhancing portlet run-time display with dynamically applied portlet skins
US7376900B2 (en) * 2004-09-30 2008-05-20 International Business Machines Corporation Method and system to control operation of a portlet
US20060080612A1 (en) * 2004-10-07 2006-04-13 International Business Machines Corporation Dynamic portlet tabbing
US9471332B2 (en) * 2004-10-19 2016-10-18 International Business Machines Corporation Selecting graphical component types at runtime
US20070266061A1 (en) * 2004-11-08 2007-11-15 Kenichirou Fujiyama Data Multiplexing System
US7509659B2 (en) * 2004-11-18 2009-03-24 International Business Machines Corporation Programming portal applications
US7783670B2 (en) * 2004-11-18 2010-08-24 Bea Systems, Inc. Client server conversion for representing hierarchical data structures
US7574712B2 (en) * 2004-11-22 2009-08-11 Bea Systems, Inc. User interface for configuring web services for remote portlets
US7788340B2 (en) * 2004-11-22 2010-08-31 Bea Systems Inc. System and method for event based interportlet communications
US7502853B2 (en) * 2004-11-22 2009-03-10 Bea Systems, Inc. System and method for improved remote portlet communications
US20060161672A1 (en) * 2004-11-22 2006-07-20 Bea Systems, Inc. System and method for improved interportlet communications
JP2006155522A (en) * 2004-12-01 2006-06-15 Canon Inc Operation method and device for web browser
US7441187B2 (en) * 2004-12-16 2008-10-21 International Business Machines Corporation Web template processing utilizing dynamic rules defined by data structure language
US7634519B2 (en) * 2004-12-17 2009-12-15 International Business Machines Corporation Bypassing an intermediate synchronization server of a three tiered synchronization system
US8219807B1 (en) 2004-12-17 2012-07-10 Novell, Inc. Fine grained access control for linux services
US20060137000A1 (en) * 2004-12-20 2006-06-22 Isaacson Scott A Method binding network administrators as the root user on linux
US20060136473A1 (en) * 2004-12-20 2006-06-22 Lamb James A Service data organization
US8271785B1 (en) 2004-12-20 2012-09-18 Novell, Inc. Synthesized root privileges
US20060212798A1 (en) * 2005-01-12 2006-09-21 Lection David B Rendering content natively on local operating system
US8631324B2 (en) * 2005-01-12 2014-01-14 International Business Machines Corporation Running content emitters natively on local operating system
US20150381597A1 (en) * 2005-01-31 2015-12-31 Unisys Corporation Enterprise management for secure network communications over ipsec
US7613671B2 (en) * 2005-02-15 2009-11-03 Fair Isaac Corporation Approach for re-using business rules
US7490072B1 (en) 2005-02-16 2009-02-10 Novell, Inc. Providing access controls
US7565621B2 (en) * 2005-02-17 2009-07-21 International Business Machines Corporation Methods and apparatus for providing graphical indicators and inline controls for relating and managing portlets in a graphical user interface
US7831556B2 (en) * 2005-03-17 2010-11-09 International Business Machines Corporation Differential rendering and refreshing a portal page with a page delta
US9071570B2 (en) * 2005-03-30 2015-06-30 International Business Machines Corporation Method and apparatus to select and deliver portable portlets
US7822793B2 (en) * 2005-04-01 2010-10-26 Microsoft Corporation User data profile namespace
CN100352231C (en) * 2005-04-11 2007-11-28 深圳市天路软件开发有限公司 Synchronization transmission method and system for data between general server and terminal server
US7774332B2 (en) * 2005-04-12 2010-08-10 International Business Machines Corporation Enabling interactive integration of network-accessible applications in a content aggregation framework
US7493564B2 (en) * 2005-04-26 2009-02-17 International Business Machines Corporation Method for the display of visual sequencing of launched application portlets and task page relationship information in a web-base environment
US20060242249A1 (en) * 2005-04-26 2006-10-26 International Business Machines Corporation Method for the display of visual sequencing of message communications between application portlets and task page relationship information in a web-base environment
WO2006119514A2 (en) * 2005-04-29 2006-11-09 Rajiv Terwadkar Data synchronization from hand-held device to web via internet protocol
US8073899B2 (en) * 2005-04-29 2011-12-06 Netapp, Inc. System and method for proxying data access commands in a storage system cluster
US9053164B2 (en) * 2005-05-05 2015-06-09 International Business Machines Corporation Method, system, and program product for using analysis views to identify data synchronization problems between databases
US20060253411A1 (en) * 2005-05-05 2006-11-09 International Business Machines Corporation Method, system and program product for inserting visual controls for data values in web content from a legacy web application without rewriting the legacy web application
US8074214B2 (en) * 2005-05-19 2011-12-06 Oracle International Corporation System for creating a customized software installation on demand
US7702912B2 (en) * 2005-05-19 2010-04-20 Novell, Inc. Secure systems management
US8352935B2 (en) 2005-05-19 2013-01-08 Novell, Inc. System for creating a customized software distribution based on user requirements
US20060282428A1 (en) 2005-06-10 2006-12-14 Microsoft Corporation Method and system for assignment of membership through script
US8214731B2 (en) * 2005-06-30 2012-07-03 International Business Machines Corporation Independently refreshing portlet content in a portal view
US20070016857A1 (en) * 2005-06-30 2007-01-18 International Business Machines Corporation Method and system for non-intrusive portlet rendering for printing
US9218329B2 (en) 2005-06-30 2015-12-22 International Business Machines Corporation Independent submission of forms in a portal view
US8272058B2 (en) 2005-07-29 2012-09-18 Bit 9, Inc. Centralized timed analysis in a network security system
US7895651B2 (en) 2005-07-29 2011-02-22 Bit 9, Inc. Content tracking in a network security system
US8984636B2 (en) 2005-07-29 2015-03-17 Bit9, Inc. Content extractor and analysis system
US8745485B2 (en) * 2005-08-18 2014-06-03 Oracle International Corporation Extensible remote tag markup system and method
WO2007092050A2 (en) * 2005-08-26 2007-08-16 Spot Runner, Inc. Systems and methods for media planning, ad production, ad placement and content customization
US20070061707A1 (en) * 2005-09-15 2007-03-15 International Business Machines Corporation Method, system, and computer program product for providing virtual views in an on-demand portal infrastructure
US20070067354A1 (en) * 2005-09-16 2007-03-22 Microsoft Corporation Productivity suite to line of business synchronization mechanism
US7945531B2 (en) * 2005-09-16 2011-05-17 Microsoft Corporation Interfaces for a productivity suite application and a hosted user interface
CN101310265B (en) * 2005-09-16 2013-03-13 微软公司 Synchronization mechanism of productivity suite to line of business
US7818676B2 (en) * 2005-09-22 2010-10-19 International Business Machines Corporation System, method and program product for a content viewer portlet
US7917537B2 (en) 2005-09-26 2011-03-29 Oracle International Corporation System and method for providing link property types for content management
US7953734B2 (en) 2005-09-26 2011-05-31 Oracle International Corporation System and method for providing SPI extensions for content management system
US7752205B2 (en) 2005-09-26 2010-07-06 Bea Systems, Inc. Method and system for interacting with a virtual content repository
US7818344B2 (en) 2005-09-26 2010-10-19 Bea Systems, Inc. System and method for providing nested types for content management
US20070073638A1 (en) * 2005-09-26 2007-03-29 Bea Systems, Inc. System and method for using soft links to managed content
US8078954B2 (en) * 2005-09-27 2011-12-13 Oracle International Corporation System and method for page flow editor
US9336015B2 (en) * 2005-09-27 2016-05-10 Oracle International Corporation System and method for action output/page input mismatch detection and resolution
US20070083853A1 (en) * 2005-09-27 2007-04-12 Bea Systems, Inc. System and method for declarative validation rule editor
US20070079238A1 (en) * 2005-10-05 2007-04-05 Sbc Knowledge Ventures, L.P. Computer executable graphical user interface engine, system, and method therefor
US20070100957A1 (en) * 2005-10-13 2007-05-03 Bhogal Kulvir S Method and apparatus to provide guaranteed deployment of applications to nodes in an enterprise
CN100395751C (en) * 2005-10-14 2008-06-18 华为技术有限公司 Device and method for page smart configuration
US20070094267A1 (en) * 2005-10-20 2007-04-26 Glogood Inc. Method and system for website navigation
US7778968B2 (en) * 2005-10-31 2010-08-17 Sap Ag Systems and methods for compiling applications on a test server
EP1780652B1 (en) * 2005-10-31 2011-08-10 Sap Ag Data processing system and method
US8255818B2 (en) 2005-11-17 2012-08-28 Oracle International Corporation System and method for providing drag and drop functionality in a communities framework
US8046696B2 (en) * 2005-11-17 2011-10-25 Oracle International Corporation System and method for providing active menus in a communities framework
US20070112913A1 (en) * 2005-11-17 2007-05-17 Bales Christopher E System and method for displaying HTML content from portlet as a page element in a communites framework
US20070112799A1 (en) * 2005-11-17 2007-05-17 Bales Christopher E System and method for providing resource interlinking for a communities framework
US8078597B2 (en) * 2005-11-17 2011-12-13 Oracle International Corporation System and method for providing extensible controls in a communities framework
US8185643B2 (en) * 2005-11-17 2012-05-22 Oracle International Corporation System and method for providing security in a communities framework
US20070208751A1 (en) * 2005-11-22 2007-09-06 David Cowan Personalized content control
US20070130518A1 (en) * 2005-12-01 2007-06-07 Alefo Interactive Ltd. Method and apparatus for a personalized web page
CN100535900C (en) * 2005-12-06 2009-09-02 国际商业机器公司 Method and system for rendering asynchronous portal page
US7565373B2 (en) * 2005-12-07 2009-07-21 Teradata Us, Inc. Automating business events
US20070136201A1 (en) * 2005-12-12 2007-06-14 Google Inc. Customized container document modules using preferences
US8185819B2 (en) * 2005-12-12 2012-05-22 Google Inc. Module specification for a module to be incorporated into a container document
US20070143446A1 (en) * 2005-12-21 2007-06-21 Morris Robert P Methods, systems, and computer program products for installing an application from one peer to another including application configuration settings and data
US7933928B2 (en) * 2005-12-22 2011-04-26 Oracle International Corporation Method and mechanism for loading XML documents into memory
CN100353713C (en) * 2005-12-26 2007-12-05 北京航空航天大学 Authentic remote service heat deploying method
US20070157082A1 (en) * 2006-01-04 2007-07-05 Computer Associates Think, Inc. Web portal layout manager system and method
KR101263392B1 (en) * 2006-01-09 2013-05-21 삼성전자주식회사 Ownership sharing method and apparatus using secret key in home network remote-controller
US8261331B2 (en) * 2006-01-17 2012-09-04 International Business Machines Corporation Security management for an integrated console for applications associated with multiple user registries
US9129285B2 (en) * 2006-01-27 2015-09-08 International Business Machines Corporation Previewing in live electronic commerce environment
US9454734B2 (en) 2006-02-21 2016-09-27 International Business Machines Corporation Heuristic assembly of a component based application
US20070204169A1 (en) * 2006-02-28 2007-08-30 International Business Machines Corporation Enabling automatic business processes using state transfer diagram and abstraction
US20070226633A1 (en) * 2006-03-06 2007-09-27 International Business Machines Corporation Copying and pasting portlets in a portal environment
US8676973B2 (en) * 2006-03-07 2014-03-18 Novell Intellectual Property Holdings, Inc. Light-weight multi-user browser
US7788580B1 (en) 2006-03-28 2010-08-31 Amazon Technologies, Inc. Processing digital images including headers and footers into reflow content
US7433548B2 (en) * 2006-03-28 2008-10-07 Amazon Technologies, Inc. Efficient processing of non-reflow content in a digital image
US8023738B1 (en) 2006-03-28 2011-09-20 Amazon Technologies, Inc. Generating reflow files from digital images for rendering on various sized displays
US7966557B2 (en) 2006-03-29 2011-06-21 Amazon Technologies, Inc. Generating image-based reflowable files for rendering on various sized displays
US8155275B1 (en) 2006-04-03 2012-04-10 Verint Americas, Inc. Systems and methods for managing alarms from recorders
US20070282923A1 (en) * 2006-06-01 2007-12-06 Christopher Ward Method and apparatus for the manipulation, customization, coordination and decomposition of active data models
US7747736B2 (en) * 2006-06-05 2010-06-29 International Business Machines Corporation Rule and policy promotion within a policy hierarchy
US8019845B2 (en) * 2006-06-05 2011-09-13 International Business Machines Corporation Service delivery using profile based management
US7676589B2 (en) * 2006-06-05 2010-03-09 International Business Machines Corporation Automatic generation of portlets for visualizing data by exploiting object relationships
US20080172608A1 (en) * 2006-06-06 2008-07-17 Bellsouth Intellectual Property Corporation Site builder
US7600188B2 (en) * 2006-06-15 2009-10-06 Glogood, Inc. Interface for directing a user to build a website
US20070300150A1 (en) * 2006-06-22 2007-12-27 Lantronix, Inc. Building rich web site applications with an embedded device
US20080005115A1 (en) * 2006-06-30 2008-01-03 International Business Machines Corporation Methods and apparatus for scoped role-based access control
US8196039B2 (en) * 2006-07-07 2012-06-05 International Business Machines Corporation Relevant term extraction and classification for Wiki content
US8219900B2 (en) * 2006-07-07 2012-07-10 International Business Machines Corporation Programmatically hiding and displaying Wiki page layout sections
US8775930B2 (en) * 2006-07-07 2014-07-08 International Business Machines Corporation Generic frequency weighted visualization component
US20080010609A1 (en) * 2006-07-07 2008-01-10 Bryce Allen Curtis Method for extending the capabilities of a Wiki environment
US8560956B2 (en) * 2006-07-07 2013-10-15 International Business Machines Corporation Processing model of an application wiki
US7539827B2 (en) * 2006-07-19 2009-05-26 Microsoft Corporation Synchronization of change-tracked data store with data store having limited or no change tracking
US8407250B2 (en) 2006-08-07 2013-03-26 Google Inc. Distribution of content document to varying users with security customization and scalability
US8954861B1 (en) * 2006-08-07 2015-02-10 Google Inc. Administrator configurable gadget directory for personalized start pages
US20090037935A1 (en) * 2006-08-07 2009-02-05 Shoumen Saha Updating The Configuration of Container Documents
US8185830B2 (en) * 2006-08-07 2012-05-22 Google Inc. Configuring a content document for users and user groups
WO2008021433A2 (en) * 2006-08-14 2008-02-21 Payman Khodabandehloo Design tool and methodology for enterprise software applications
US8694953B2 (en) * 2006-08-14 2014-04-08 Payman Khodabandehloo Tool and methodology for enterprise software applications
US7730480B2 (en) * 2006-08-22 2010-06-01 Novell, Inc. System and method for creating a pattern installation by cloning software installed another computer
US7823124B2 (en) * 2006-08-29 2010-10-26 Sap Ag Transformation layer
US7827528B2 (en) * 2006-08-29 2010-11-02 Sap Ag Delta layering
US8131644B2 (en) * 2006-08-29 2012-03-06 Sap Ag Formular update
US7831568B2 (en) * 2006-08-29 2010-11-09 Sap Ag Data migration
US8065661B2 (en) * 2006-08-29 2011-11-22 Sap Ag Test engine
US20080071555A1 (en) * 2006-08-29 2008-03-20 Juergen Sattler Application solution proposal engine
US7908589B2 (en) * 2006-08-29 2011-03-15 Sap Ag Deployment
US20080059630A1 (en) * 2006-08-29 2008-03-06 Juergen Sattler Assistant
US20080127082A1 (en) * 2006-08-29 2008-05-29 Miho Emil Birimisa System and method for requirements-based application configuration
US20080071839A1 (en) * 2006-08-29 2008-03-20 Juergen Sattler Content authoring
US7831637B2 (en) * 2006-08-29 2010-11-09 Sap Ag System on the fly
US20080066169A1 (en) * 2006-09-08 2008-03-13 Microsoft Corporation Fact Qualifiers in Security Scenarios
US20080065899A1 (en) * 2006-09-08 2008-03-13 Microsoft Corporation Variable Expressions in Security Assertions
US8095969B2 (en) * 2006-09-08 2012-01-10 Microsoft Corporation Security assertion revocation
US20080066158A1 (en) * 2006-09-08 2008-03-13 Microsoft Corporation Authorization Decisions with Principal Attributes
US7814534B2 (en) * 2006-09-08 2010-10-12 Microsoft Corporation Auditing authorization decisions
US8201215B2 (en) * 2006-09-08 2012-06-12 Microsoft Corporation Controlling the delegation of rights
US8060931B2 (en) 2006-09-08 2011-11-15 Microsoft Corporation Security authorization queries
US8656503B2 (en) 2006-09-11 2014-02-18 Microsoft Corporation Security language translations with logic resolution
US20080066147A1 (en) * 2006-09-11 2008-03-13 Microsoft Corporation Composable Security Policies
US8938783B2 (en) * 2006-09-11 2015-01-20 Microsoft Corporation Security language expressions for logic resolution
US9754039B2 (en) * 2006-09-12 2017-09-05 International Business Machines Corporation Dynamic context-sensitive integration of content into a web portal application
US20080127234A1 (en) * 2006-09-19 2008-05-29 International Business Machines Corporation Methods, systems, and computer program products for a remote request dispatcher extension framework for container based programming models
US7904953B2 (en) * 2006-09-22 2011-03-08 Bea Systems, Inc. Pagelets
US20080077851A1 (en) * 2006-09-26 2008-03-27 International Business Machines Corporation Method and apparatus for inserting jsr 168 portlet content into a j2ee java server page
US7715635B1 (en) 2006-09-28 2010-05-11 Amazon Technologies, Inc. Identifying similarly formed paragraphs in scanned images
US7810026B1 (en) 2006-09-29 2010-10-05 Amazon Technologies, Inc. Optimizing typographical content for transmission and display
US8463852B2 (en) 2006-10-06 2013-06-11 Oracle International Corporation Groupware portlets for integrating a portal with groupware systems
US7882228B2 (en) * 2006-10-20 2011-02-01 Verizon Patent And Licensing Inc. Integrated application access
CN101188623B (en) * 2006-11-20 2011-02-02 国际商业机器公司 Method and system for dynamic binding door components
US20080127133A1 (en) * 2006-11-28 2008-05-29 International Business Machines Corporation Aggregating portlets for use within a client environment without relying upon server resources
US9135605B2 (en) * 2006-11-29 2015-09-15 Adobe Systems Incorporated Instant electronic meeting from within a current computer application
US20080133722A1 (en) * 2006-12-04 2008-06-05 Infosys Technologies Ltd. Parallel dynamic web page section processing
US8037409B2 (en) * 2006-12-19 2011-10-11 International Business Machines Corporation Method for learning portal content model enhancements
US20080155037A1 (en) * 2006-12-20 2008-06-26 Yahoo! Inc. Providing real time information in a visual information unit
US8136090B2 (en) 2006-12-21 2012-03-13 International Business Machines Corporation System and methods for applying social computing paradigm to software installation and configuration
US20080155559A1 (en) * 2006-12-21 2008-06-26 Ilja Fischer Portal eventing directory
US9391826B1 (en) * 2006-12-29 2016-07-12 Google Inc. Collaborative web based applications
US8539073B1 (en) 2006-12-29 2013-09-17 Google Inc. Startup of container applications
US8612547B1 (en) 2006-12-29 2013-12-17 Google Inc. Container interrupt services
US9384346B1 (en) 2006-12-29 2016-07-05 Google Inc. Local service access within a web based application framework
US8335817B1 (en) 2006-12-29 2012-12-18 Google Inc. Message passing within a web based application framework
US8248636B1 (en) 2006-12-29 2012-08-21 Google Inc. WYSIWYG printing for web based applications
US7895296B1 (en) 2006-12-29 2011-02-22 Google, Inc. Local storage for web based native applications
US20080306955A1 (en) * 2007-03-26 2008-12-11 Lehman Brothers Inc. Content management system and method
WO2008134627A2 (en) 2007-04-27 2008-11-06 Boomi, Inc. System and method for automated on-demand creation of a customized software application
US20080270915A1 (en) * 2007-04-30 2008-10-30 Avadis Tevanian Community-Based Security Information Generator
US20080320381A1 (en) * 2007-06-20 2008-12-25 Joel Sercel Web application hybrid structure and methods for building and operating a web application hybrid structure
CN101340425A (en) * 2007-07-02 2009-01-07 华为技术有限公司 Method and apparatus for data synchronization between terminals
US8302013B2 (en) * 2007-08-16 2012-10-30 Yahoo! Inc. Personalized page modules
US8812944B2 (en) * 2007-08-16 2014-08-19 Yahoo! Inc. Page modules and providing content
US20090049380A1 (en) * 2007-08-16 2009-02-19 Joshua Allen Rehling Page Modules and States
US8032587B2 (en) * 2007-08-28 2011-10-04 International Business Machines Corporation Method and apparatus for client-side aggregation of asynchronous fragmented requests
US8281283B2 (en) * 2007-09-13 2012-10-02 Sap Ag Model-based integration of business logic implemented in enterprise javabeans into a UI framework
US9401957B2 (en) * 2007-09-14 2016-07-26 International Business Machines Corporation System and method for synchronization between servers
US7925625B2 (en) * 2007-09-20 2011-04-12 Microsoft Corporation Synchronizing data between business applications
US7987428B2 (en) * 2007-10-23 2011-07-26 Microsoft Corporation Dashboard editor
US8095417B2 (en) * 2007-10-23 2012-01-10 Microsoft Corporation Key performance indicator scorecard editor
US8381169B2 (en) * 2007-10-30 2013-02-19 International Business Machines Corporation Extending unified process and method content to include dynamic and collaborative content
US8849940B1 (en) * 2007-12-14 2014-09-30 Blue Coat Systems, Inc. Wide area network file system with low latency write command processing
US8782516B1 (en) 2007-12-21 2014-07-15 Amazon Technologies, Inc. Content style detection
US20090172008A1 (en) * 2008-01-02 2009-07-02 International Business Machines Corporation Templating virtual views in an on-demand portal infrastructure
US20090187440A1 (en) * 2008-01-21 2009-07-23 Binny Gopinath Sreevas Method and system for facilitating security management in an electronic network
US7519987B1 (en) 2008-02-05 2009-04-14 International Business Machines Corporation Method, system, and apparatus to allow for credential vault usage in templated portal applications
US9817822B2 (en) 2008-02-07 2017-11-14 International Business Machines Corporation Managing white space in a portal web page
US8572161B2 (en) * 2008-03-12 2013-10-29 Oracle International Corporation Simplifying synchronization of copies of same data used by multiple applications
US7992191B2 (en) * 2008-03-25 2011-08-02 International Business Machines Corporation System and method for controlling a websphere portal without the requirement of having the administrator credential ID and password
US8572480B1 (en) 2008-05-30 2013-10-29 Amazon Technologies, Inc. Editing the sequential flow of a page
US9172709B2 (en) * 2008-06-24 2015-10-27 Raytheon Company Secure network portal
AU2008358849A1 (en) * 2008-06-30 2010-01-07 Accenture Global Services Limited Gaming system
US8169414B2 (en) * 2008-07-12 2012-05-01 Lim Seung E Control of electronic games via finger angle using a high dimensional touchpad (HDTP) touch user interface
US8359357B2 (en) * 2008-07-21 2013-01-22 Raytheon Company Secure E-mail messaging system
US20100023690A1 (en) * 2008-07-22 2010-01-28 International Business Machines Corporation Caching dynamic contents and using a replacement operation to reduce the creation/deletion time associated with html elements
US8850561B2 (en) * 2008-08-25 2014-09-30 International Business Machines Corporation Associating operating system native authorizations with console roles
US20100064233A1 (en) * 2008-09-09 2010-03-11 Dewar Ami H System, method, and apparatus for generating a portlet by merging content from a plurality of portlets
US20100077350A1 (en) * 2008-09-25 2010-03-25 Microsoft Corporation Combining elements in presentation of content
US9229911B1 (en) 2008-09-30 2016-01-05 Amazon Technologies, Inc. Detecting continuation of flow of a page
US7822853B2 (en) * 2008-09-30 2010-10-26 Microsoft Corporation Stabilization of distributed systems
US8135659B2 (en) * 2008-10-01 2012-03-13 Sap Ag System configuration comparison to identify process variation
US8429540B1 (en) 2008-10-10 2013-04-23 Adobe Systems Incorporated End user created collaborative and non-collaborative workspace application container system and method
US20100095348A1 (en) * 2008-10-10 2010-04-15 Ciphent, Inc. System and method for management and translation of technical security policies and configurations
US8364699B2 (en) * 2008-11-14 2013-01-29 Morgan Stanley Commodities framework
US8346615B2 (en) * 2008-11-25 2013-01-01 Yodlee, Inc. Financial gadgets
US9495471B2 (en) * 2008-12-04 2016-11-15 International Business Machines Corporation Optimize view elements sizes to maximize most data viewed in a multiple view elements GUI
US8359641B2 (en) * 2008-12-05 2013-01-22 Raytheon Company Multi-level secure information retrieval system
US8396893B2 (en) * 2008-12-11 2013-03-12 Sap Ag Unified configuration of multiple applications
US8255429B2 (en) * 2008-12-17 2012-08-28 Sap Ag Configuration change without disruption of incomplete processes
GB2467038A (en) * 2009-01-19 2010-07-21 Ibm Generating portal navigational elements based on a users authentication level
WO2010102296A1 (en) 2009-03-06 2010-09-10 Exactarget, Inc. System and method for controlling access to aspects of an electronic messaging campaign
US8321792B1 (en) 2009-04-21 2012-11-27 Jackbe Corporation Method and system for capturing and using mashup data for trend analysis
US8261193B1 (en) 2009-04-21 2012-09-04 Jackbe Corporation Method and system for capturing mashup data for collective intelligence and user-generated knowledge
US8397056B1 (en) 2009-04-21 2013-03-12 Jackbe Corporation Method and apparatus to apply an attribute based dynamic policy for mashup resources
US8458596B1 (en) * 2009-04-21 2013-06-04 Jackbe Corporation Method and apparatus for a mashup dashboard
US8028070B2 (en) * 2009-05-18 2011-09-27 Microsoft Corporation Synchronizing tasks between servers
US8555055B2 (en) * 2009-06-02 2013-10-08 Microsoft Corporation Delegation model for role-based access control administration
US20100325245A1 (en) * 2009-06-17 2010-12-23 Agostino Sibillo Aggregated proxy browser with aggregated links, systems and methods
US8627223B1 (en) * 2009-06-30 2014-01-07 Sprint Communications Company L.P. Customized execution sequences for portions of third party applications
US9110577B1 (en) 2009-09-30 2015-08-18 Software AG USA Inc. Method and system for capturing, inferring, and/or navigating dependencies between mashups and their data sources and consumers
US8473905B1 (en) * 2009-09-30 2013-06-25 Emc Corporation Managing user interface characteristics in displaying data storage systems information
US8271434B2 (en) * 2009-10-01 2012-09-18 Verizon Patent And Licensing Inc. Central data store process configuration
US20110113354A1 (en) * 2009-11-12 2011-05-12 Sling Media Pvt Ltd Always-on-top media player launched from a web browser
CN102073915A (en) * 2009-11-19 2011-05-25 北汽福田汽车股份有限公司 Office automation system and implementation method thereof
US20110138288A1 (en) * 2009-12-08 2011-06-09 International Business Machines Corporation Method, system, and computer program product for tagging of portlets in a portal infrastructure
US8584087B2 (en) 2009-12-11 2013-11-12 Sap Ag Application configuration deployment monitor
KR20110068550A (en) * 2009-12-16 2011-06-22 삼성전자주식회사 Image forming apparatus and method for providing local user interface thereof
US8499236B1 (en) 2010-01-21 2013-07-30 Amazon Technologies, Inc. Systems and methods for presenting reflowable content on a display
US9589240B2 (en) 2010-05-14 2017-03-07 Oracle International Corporation System and method for flexible chaining of distinct workflow task instances in a business process execution language workflow
US9852382B2 (en) 2010-05-14 2017-12-26 Oracle International Corporation Dynamic human workflow task assignment using business rules
US9741006B2 (en) 2010-05-14 2017-08-22 Oracle International Corporation System and method for providing complex access control in workflows
US8819055B2 (en) * 2010-05-14 2014-08-26 Oracle International Corporation System and method for logical people groups
US9367595B1 (en) 2010-06-04 2016-06-14 Software AG USA Inc. Method and system for visual wiring tool to interconnect apps
US9483449B1 (en) * 2010-07-30 2016-11-01 Amazon Technologies, Inc. Optimizing page output through run-time reordering of page content
JP5495188B2 (en) * 2010-09-07 2014-05-21 株式会社リコー Web service providing system, server device, method and program
US8307277B2 (en) 2010-09-10 2012-11-06 Facebook, Inc. Efficient event delegation in browser scripts
US20120137235A1 (en) * 2010-11-29 2012-05-31 Sabarish T S Dynamic user interface generation
JP2011096275A (en) * 2010-12-17 2011-05-12 Fujitsu Ltd File management system
CN102088489B (en) * 2010-12-31 2013-05-22 北京理工大学 Distributed data synchronizing system and method
US10482475B2 (en) 2011-02-10 2019-11-19 Adp Dealer Services, Inc. Systems and methods for providing targeted advertising
EP2705459B1 (en) * 2011-04-30 2020-08-05 VMWare, Inc. Dynamic management of groups for entitlement and provisioning of computer resources
CN102780724B (en) * 2011-05-12 2016-02-10 阿里巴巴集团控股有限公司 A kind of sending method of category information, system and equipment
US8966434B2 (en) 2011-06-06 2015-02-24 Microsoft Corporation Repository based development using project development tools in enterprise management environment
CN102291449B (en) * 2011-08-08 2014-04-02 浪潮电子信息产业股份有限公司 Method for testing and adjusting cluster storage system performance based on synchronous strategy
CN102262674A (en) * 2011-08-11 2011-11-30 大唐移动通信设备有限公司 Data synchronization method and system for distributed memory database
US8903702B2 (en) 2011-08-31 2014-12-02 International Business Machines Corporation Generating specifications for expression language expressions and tag libraries
US9729631B2 (en) * 2011-09-30 2017-08-08 Apple Inc. Asynchronous data manipulation
CN103164193B (en) * 2011-12-12 2016-02-17 阿里巴巴集团控股有限公司 A kind of rendering intent of template and device
CN102542007B (en) * 2011-12-13 2014-06-25 中国电子科技集团公司第十五研究所 Method and system for synchronization of relational databases
WO2013096174A1 (en) * 2011-12-23 2013-06-27 Airstrip Ip Holdings, Llc Systems and methods for developing multi-platform applications for computing devices
US8782103B2 (en) 2012-04-13 2014-07-15 Dell Products, Lp Monitoring system for optimizing integrated business processes to work flow
US9015106B2 (en) * 2012-04-30 2015-04-21 Dell Products, Lp Cloud based master data management system and method therefor
US9017170B2 (en) * 2012-05-23 2015-04-28 King.Com Limited Method and apparatus for interactive gameplay across multiple computing platforms
US20130326046A1 (en) * 2012-05-30 2013-12-05 Progress Software Corp. Systems, methods and media for providing client-side interportlet communication
CN102710446A (en) * 2012-06-07 2012-10-03 浪潮电子信息产业股份有限公司 Performance tuning method of colony memory system based on synchronous strategy
US20140095982A1 (en) * 2012-09-28 2014-04-03 DIY Themes LLC Systems, Servers, and Methods for Managing Websites
US10346422B2 (en) 2012-10-18 2019-07-09 International Business Machines Corporation Use of proxy objects for integration between a content management system and a case management system
US20140114864A1 (en) * 2012-10-22 2014-04-24 International Business Machines Corporation Case management integration with external content repositories
GB2507483A (en) 2012-10-30 2014-05-07 Ibm Hybrid server side and client side portal aggregation and rendering
CN103870478B (en) * 2012-12-12 2018-09-25 腾讯科技(深圳)有限公司 A kind of method and device for restoring synchrodata
US9977820B1 (en) 2013-03-15 2018-05-22 Tasktop Technologies, Incorporated System and method for synchronizing states in associated data records
US9342512B1 (en) 2013-03-15 2016-05-17 Tasktop Technologies, Incorporated System and method for repairing data synchronization links
US11080734B2 (en) 2013-03-15 2021-08-03 Cdk Global, Llc Pricing system for identifying prices for vehicles offered by vehicle dealerships and other entities
US9218387B2 (en) * 2013-05-22 2015-12-22 Dell Products, Lp Cloud based master data management system and method therefor
CN104253790B (en) * 2013-06-27 2018-08-28 国际商业机器公司 The method and apparatus of standardization page flow
US9448913B2 (en) * 2013-08-28 2016-09-20 Sap Se Performance metric visualization systems and methods
US9678997B2 (en) * 2013-10-27 2017-06-13 International Business Machines Corporation Version control with accept only designations
US20150121351A1 (en) * 2013-10-31 2015-04-30 Alan Cabrera Generating configuration data based on application definitions
US9696982B1 (en) * 2013-11-05 2017-07-04 Amazon Technologies, Inc. Safe host deployment for a heterogeneous host fleet
CN104660409B (en) * 2013-11-25 2018-10-23 北京神州泰岳软件股份有限公司 The method of system login and certificate server cluster under cluster environment
US20150169207A1 (en) * 2013-12-18 2015-06-18 Dropbox, Inc. Systems and methods for generating personalized account reconfiguration interfaces
US10325001B2 (en) * 2014-02-26 2019-06-18 International Business Machines Corporation Operating a portal environment
CN103793533B (en) * 2014-02-27 2017-12-08 大唐移动通信设备有限公司 A kind of Distributed Data Synchronization method and apparatus
US10409922B2 (en) * 2014-06-10 2019-09-10 Siemens Product Lifecycle Management Software Inc. Navigating and authoring configured product lifecycle data
US9729583B1 (en) 2016-06-10 2017-08-08 OneTrust, LLC Data processing systems and methods for performing privacy assessments and monitoring of new versions of computer code for privacy compliance
US11036933B2 (en) * 2014-09-25 2021-06-15 Oracle International Corporation User interface component autowiring
GB2532030A (en) * 2014-11-05 2016-05-11 Ibm Method and facility for user navigation in a target portal
JP6451227B2 (en) * 2014-11-06 2019-01-16 富士ゼロックス株式会社 Information processing apparatus, information processing system, program, and recording medium
US10616219B2 (en) * 2014-12-11 2020-04-07 FlowJo, LLC Single cell data management and analysis systems and methods
US9459839B2 (en) 2014-12-15 2016-10-04 Tasktop Technologies, Incorporated Systems and methods to synchronize artifact relationships across a plurality of repositories
US20160232369A1 (en) * 2015-02-11 2016-08-11 Ricoh Company, Ltd. Managing Access To Images Using Roles
US20160292601A1 (en) * 2015-03-30 2016-10-06 Oracle International Corporation Delegation of tasks to other personnel in an erp application
US10701037B2 (en) 2015-05-27 2020-06-30 Ping Identity Corporation Scalable proxy clusters
US9613195B2 (en) 2015-05-29 2017-04-04 Rockwell Automation Technologies, Inc. Secondary security authority
CN105117654A (en) * 2015-07-24 2015-12-02 中国电力科学研究院 Data synchronization method between same systems under the circumstance of network physical isolation
CN106445956B (en) * 2015-08-10 2020-11-03 苏宁易购集团股份有限公司 Shopping data management method and device
US10425477B2 (en) 2015-09-15 2019-09-24 Microsoft Technology Licensing, Llc Synchronizing file data between computer systems
US20220164840A1 (en) 2016-04-01 2022-05-26 OneTrust, LLC Data processing systems and methods for integrating privacy information management systems with data loss prevention tools or other tools for privacy design
US11004125B2 (en) 2016-04-01 2021-05-11 OneTrust, LLC Data processing systems and methods for integrating privacy information management systems with data loss prevention tools or other tools for privacy design
US10706447B2 (en) 2016-04-01 2020-07-07 OneTrust, LLC Data processing systems and communication systems and methods for the efficient generation of privacy risk assessments
US11244367B2 (en) 2016-04-01 2022-02-08 OneTrust, LLC Data processing systems and methods for integrating privacy information management systems with data loss prevention tools or other tools for privacy design
US10867285B2 (en) 2016-04-21 2020-12-15 Cdk Global, Llc Automatic automobile repair service scheduling based on diagnostic trouble codes and service center attributes
US10853769B2 (en) 2016-04-21 2020-12-01 Cdk Global Llc Scheduling an automobile service appointment in a dealer service bay based on diagnostic trouble codes and service bay attributes
US10332068B2 (en) 2016-04-21 2019-06-25 Cdk Global, Llc Systems and methods for stocking an automobile
US11418492B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing systems and methods for using a data model to select a target data asset in a data migration
US10762236B2 (en) 2016-06-10 2020-09-01 OneTrust, LLC Data processing user interface monitoring systems and related methods
US10706174B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data processing systems for prioritizing data subject access requests for fulfillment and related methods
US11636171B2 (en) 2016-06-10 2023-04-25 OneTrust, LLC Data processing user interface monitoring systems and related methods
US10454973B2 (en) 2016-06-10 2019-10-22 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US10944725B2 (en) 2016-06-10 2021-03-09 OneTrust, LLC Data processing systems and methods for using a data model to select a target data asset in a data migration
US11057356B2 (en) 2016-06-10 2021-07-06 OneTrust, LLC Automated data processing systems and methods for automatically processing data subject access requests using a chatbot
US11074367B2 (en) 2016-06-10 2021-07-27 OneTrust, LLC Data processing systems for identity validation for consumer rights requests and related methods
US10565397B1 (en) 2016-06-10 2020-02-18 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US10706379B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data processing systems for automatic preparation for remediation and related methods
US10740487B2 (en) 2016-06-10 2020-08-11 OneTrust, LLC Data processing systems and methods for populating and maintaining a centralized database of personal data
US11416798B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing systems and methods for providing training in a vendor procurement process
US10467432B2 (en) 2016-06-10 2019-11-05 OneTrust, LLC Data processing systems for use in automatically generating, populating, and submitting data subject access requests
US11295316B2 (en) 2016-06-10 2022-04-05 OneTrust, LLC Data processing systems for identity validation for consumer rights requests and related methods
US11134086B2 (en) 2016-06-10 2021-09-28 OneTrust, LLC Consent conversion optimization systems and related methods
US10846433B2 (en) 2016-06-10 2020-11-24 OneTrust, LLC Data processing consent management systems and related methods
US10706131B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data processing systems and methods for efficiently assessing the risk of privacy campaigns
US11138299B2 (en) 2016-06-10 2021-10-05 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11586700B2 (en) 2016-06-10 2023-02-21 OneTrust, LLC Data processing systems and methods for automatically blocking the use of tracking tools
US11227247B2 (en) 2016-06-10 2022-01-18 OneTrust, LLC Data processing systems and methods for bundled privacy policies
US11343284B2 (en) 2016-06-10 2022-05-24 OneTrust, LLC Data processing systems and methods for performing privacy assessments and monitoring of new versions of computer code for privacy compliance
US11146566B2 (en) 2016-06-10 2021-10-12 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US10909488B2 (en) 2016-06-10 2021-02-02 OneTrust, LLC Data processing systems for assessing readiness for responding to privacy-related incidents
US10997318B2 (en) 2016-06-10 2021-05-04 OneTrust, LLC Data processing systems for generating and populating a data inventory for processing data access requests
US11675929B2 (en) 2016-06-10 2023-06-13 OneTrust, LLC Data processing consent sharing systems and related methods
US10607028B2 (en) 2016-06-10 2020-03-31 OneTrust, LLC Data processing systems for data testing to confirm data deletion and related methods
US10769301B2 (en) 2016-06-10 2020-09-08 OneTrust, LLC Data processing systems for webform crawling to map processing activities and related methods
US11651104B2 (en) 2016-06-10 2023-05-16 OneTrust, LLC Consent receipt management systems and related methods
US10949565B2 (en) 2016-06-10 2021-03-16 OneTrust, LLC Data processing systems for generating and populating a data inventory
US11336697B2 (en) 2016-06-10 2022-05-17 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US10848523B2 (en) 2016-06-10 2020-11-24 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11562097B2 (en) 2016-06-10 2023-01-24 OneTrust, LLC Data processing systems for central consent repository and related methods
US11461500B2 (en) 2016-06-10 2022-10-04 OneTrust, LLC Data processing systems for cookie compliance testing with website scanning and related methods
US10885485B2 (en) 2016-06-10 2021-01-05 OneTrust, LLC Privacy management systems and methods
US10708305B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Automated data processing systems and methods for automatically processing requests for privacy-related information
US11210420B2 (en) 2016-06-10 2021-12-28 OneTrust, LLC Data subject access request processing systems and related methods
US10896394B2 (en) 2016-06-10 2021-01-19 OneTrust, LLC Privacy management systems and methods
US10878127B2 (en) 2016-06-10 2020-12-29 OneTrust, LLC Data subject access request processing systems and related methods
US11481710B2 (en) 2016-06-10 2022-10-25 OneTrust, LLC Privacy management systems and methods
US11222142B2 (en) 2016-06-10 2022-01-11 OneTrust, LLC Data processing systems for validating authorization for personal data collection, storage, and processing
US10685140B2 (en) 2016-06-10 2020-06-16 OneTrust, LLC Consent receipt management systems and related methods
US10909265B2 (en) 2016-06-10 2021-02-02 OneTrust, LLC Application privacy scanning systems and related methods
US10282700B2 (en) 2016-06-10 2019-05-07 OneTrust, LLC Data processing systems for generating and populating a data inventory
US11416590B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US10839102B2 (en) 2016-06-10 2020-11-17 OneTrust, LLC Data processing systems for identifying and modifying processes that are subject to data subject access requests
US11157600B2 (en) 2016-06-10 2021-10-26 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US10565161B2 (en) 2016-06-10 2020-02-18 OneTrust, LLC Data processing systems for processing data subject access requests
US11025675B2 (en) 2016-06-10 2021-06-01 OneTrust, LLC Data processing systems and methods for performing privacy assessments and monitoring of new versions of computer code for privacy compliance
US10803200B2 (en) 2016-06-10 2020-10-13 OneTrust, LLC Data processing systems for processing and managing data subject access in a distributed environment
US11151233B2 (en) 2016-06-10 2021-10-19 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11366909B2 (en) 2016-06-10 2022-06-21 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US10726158B2 (en) 2016-06-10 2020-07-28 OneTrust, LLC Consent receipt management and automated process blocking systems and related methods
US11222309B2 (en) 2016-06-10 2022-01-11 OneTrust, LLC Data processing systems for generating and populating a data inventory
US11294939B2 (en) 2016-06-10 2022-04-05 OneTrust, LLC Data processing systems and methods for automatically detecting and documenting privacy-related aspects of computer software
US11520928B2 (en) 2016-06-10 2022-12-06 OneTrust, LLC Data processing systems for generating personal data receipts and related methods
US10642870B2 (en) 2016-06-10 2020-05-05 OneTrust, LLC Data processing systems and methods for automatically detecting and documenting privacy-related aspects of computer software
US10585968B2 (en) 2016-06-10 2020-03-10 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US11416109B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Automated data processing systems and methods for automatically processing data subject access requests using a chatbot
US10678945B2 (en) 2016-06-10 2020-06-09 OneTrust, LLC Consent receipt management systems and related methods
US10706176B2 (en) 2016-06-10 2020-07-07 OneTrust, LLC Data-processing consent refresh, re-prompt, and recapture systems and related methods
US10873606B2 (en) 2016-06-10 2020-12-22 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11544667B2 (en) 2016-06-10 2023-01-03 OneTrust, LLC Data processing systems for generating and populating a data inventory
US11354434B2 (en) 2016-06-10 2022-06-07 OneTrust, LLC Data processing systems for verification of consent and notice processing and related methods
US11651106B2 (en) 2016-06-10 2023-05-16 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US11188862B2 (en) 2016-06-10 2021-11-30 OneTrust, LLC Privacy management systems and methods
US10949170B2 (en) 2016-06-10 2021-03-16 OneTrust, LLC Data processing systems for integration of consumer feedback with data subject access requests and related methods
US11625502B2 (en) 2016-06-10 2023-04-11 OneTrust, LLC Data processing systems for identifying and modifying processes that are subject to data subject access requests
US10592648B2 (en) 2016-06-10 2020-03-17 OneTrust, LLC Consent receipt management systems and related methods
US10318761B2 (en) 2016-06-10 2019-06-11 OneTrust, LLC Data processing systems and methods for auditing data request compliance
US10592692B2 (en) 2016-06-10 2020-03-17 OneTrust, LLC Data processing systems for central consent repository and related methods
US11144622B2 (en) 2016-06-10 2021-10-12 OneTrust, LLC Privacy management systems and methods
US10586075B2 (en) 2016-06-10 2020-03-10 OneTrust, LLC Data processing systems for orphaned data identification and deletion and related methods
US10776518B2 (en) 2016-06-10 2020-09-15 OneTrust, LLC Consent receipt management systems and related methods
US11438386B2 (en) 2016-06-10 2022-09-06 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11038925B2 (en) 2016-06-10 2021-06-15 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US10572686B2 (en) 2016-06-10 2020-02-25 OneTrust, LLC Consent receipt management systems and related methods
US11023842B2 (en) 2016-06-10 2021-06-01 OneTrust, LLC Data processing systems and methods for bundled privacy policies
US11341447B2 (en) 2016-06-10 2022-05-24 OneTrust, LLC Privacy management systems and methods
US10282559B2 (en) 2016-06-10 2019-05-07 OneTrust, LLC Data processing systems for identifying, assessing, and remediating data processing risks using data modeling techniques
US11228620B2 (en) 2016-06-10 2022-01-18 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US10783256B2 (en) 2016-06-10 2020-09-22 OneTrust, LLC Data processing systems for data transfer risk identification and related methods
US10853501B2 (en) 2016-06-10 2020-12-01 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11354435B2 (en) 2016-06-10 2022-06-07 OneTrust, LLC Data processing systems for data testing to confirm data deletion and related methods
US10606916B2 (en) 2016-06-10 2020-03-31 OneTrust, LLC Data processing user interface monitoring systems and related methods
US11222139B2 (en) 2016-06-10 2022-01-11 OneTrust, LLC Data processing systems and methods for automatic discovery and assessment of mobile software development kits
US11277448B2 (en) 2016-06-10 2022-03-15 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US10798133B2 (en) 2016-06-10 2020-10-06 OneTrust, LLC Data processing systems for data-transfer risk identification, cross-border visualization generation, and related methods
US11475136B2 (en) 2016-06-10 2022-10-18 OneTrust, LLC Data processing systems for data transfer risk identification and related methods
US10510031B2 (en) 2016-06-10 2019-12-17 OneTrust, LLC Data processing systems for identifying, assessing, and remediating data processing risks using data modeling techniques
US10496846B1 (en) 2016-06-10 2019-12-03 OneTrust, LLC Data processing and communications systems and methods for the efficient implementation of privacy by design
US10169609B1 (en) 2016-06-10 2019-01-01 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US11138242B2 (en) 2016-06-10 2021-10-05 OneTrust, LLC Data processing systems and methods for automatically detecting and documenting privacy-related aspects of computer software
US10796260B2 (en) 2016-06-10 2020-10-06 OneTrust, LLC Privacy management systems and methods
US11238390B2 (en) 2016-06-10 2022-02-01 OneTrust, LLC Privacy management systems and methods
US10242228B2 (en) 2016-06-10 2019-03-26 OneTrust, LLC Data processing systems for measuring privacy maturity within an organization
US10614247B2 (en) 2016-06-10 2020-04-07 OneTrust, LLC Data processing systems for automated classification of personal information from documents and related methods
US10284604B2 (en) 2016-06-10 2019-05-07 OneTrust, LLC Data processing and scanning systems for generating and populating a data inventory
US10997315B2 (en) 2016-06-10 2021-05-04 OneTrust, LLC Data processing systems for fulfilling data subject access requests and related methods
US11188615B2 (en) 2016-06-10 2021-11-30 OneTrust, LLC Data processing consent capture systems and related methods
US10776517B2 (en) 2016-06-10 2020-09-15 OneTrust, LLC Data processing systems for calculating and communicating cost of fulfilling data subject access requests and related methods
US11403377B2 (en) 2016-06-10 2022-08-02 OneTrust, LLC Privacy management systems and methods
US10776514B2 (en) 2016-06-10 2020-09-15 OneTrust, LLC Data processing systems for the identification and deletion of personal data in computer systems
US10503926B2 (en) 2016-06-10 2019-12-10 OneTrust, LLC Consent receipt management systems and related methods
US11100444B2 (en) 2016-06-10 2021-08-24 OneTrust, LLC Data processing systems and methods for providing training in a vendor procurement process
US11328092B2 (en) 2016-06-10 2022-05-10 OneTrust, LLC Data processing systems for processing and managing data subject access in a distributed environment
US11727141B2 (en) 2016-06-10 2023-08-15 OneTrust, LLC Data processing systems and methods for synching privacy-related user consent across multiple computing devices
US11087260B2 (en) 2016-06-10 2021-08-10 OneTrust, LLC Data processing systems and methods for customizing privacy training
US11301796B2 (en) 2016-06-10 2022-04-12 OneTrust, LLC Data processing systems and methods for customizing privacy training
US11416589B2 (en) 2016-06-10 2022-08-16 OneTrust, LLC Data processing and scanning systems for assessing vendor risk
US11366786B2 (en) 2016-06-10 2022-06-21 OneTrust, LLC Data processing systems for processing data subject access requests
US11200341B2 (en) 2016-06-10 2021-12-14 OneTrust, LLC Consent receipt management systems and related methods
US10416966B2 (en) 2016-06-10 2019-09-17 OneTrust, LLC Data processing systems for identity validation of data subject access requests and related methods
US11392720B2 (en) 2016-06-10 2022-07-19 OneTrust, LLC Data processing systems for verification of consent and notice processing and related methods
US10713387B2 (en) 2016-06-10 2020-07-14 OneTrust, LLC Consent conversion optimization systems and related methods
US10565236B1 (en) 2016-06-10 2020-02-18 OneTrust, LLC Data processing systems for generating and populating a data inventory
CN106131648A (en) * 2016-07-27 2016-11-16 深圳Tcl数字技术有限公司 The picture display processing method of intelligent television and device
US10681012B2 (en) 2016-10-26 2020-06-09 Ping Identity Corporation Methods and systems for deep learning based API traffic security
US10498858B2 (en) 2016-12-14 2019-12-03 Dell Products, Lp System and method for automated on-demand creation of and execution of a customized data integration software application
US10223248B2 (en) 2017-05-15 2019-03-05 Bank Of America Corporation Conducting automated software testing using centralized controller and distributed test host servers
US10489287B2 (en) 2017-05-15 2019-11-26 Bank Of America Corporation Conducting automated software testing using centralized controller and distributed test host servers
US10326858B2 (en) 2017-05-23 2019-06-18 Cdk Global, Llc System and method for dynamically generating personalized websites
US10261892B2 (en) 2017-05-24 2019-04-16 Bank Of America Corporation Cloud-based automated test execution factory
US11573182B2 (en) 2017-05-25 2023-02-07 FlowJo, LLC Visualization, comparative analysis, and automated difference detection for large multi-parameter data sets
US10013577B1 (en) 2017-06-16 2018-07-03 OneTrust, LLC Data processing systems for identifying whether cookies contain personally identifying information
US10644890B1 (en) * 2017-06-29 2020-05-05 Salesforce.Com Language-agnostic secure application deployment
EP3471007B1 (en) 2017-10-13 2022-02-23 Ping Identity Corporation Methods and apparatus for analyzing sequences of application programming interface traffic to identify potential malicious actions
US10693952B2 (en) 2017-10-23 2020-06-23 Salesforce.Com, Inc. Technologies for low latency messaging
WO2019125966A1 (en) * 2017-12-21 2019-06-27 Citrix Systems, Inc. Consolidated identity
US11599369B1 (en) * 2018-03-08 2023-03-07 Palantir Technologies Inc. Graphical user interface configuration system
US11501351B2 (en) 2018-03-21 2022-11-15 Cdk Global, Llc Servers, systems, and methods for single sign-on of an automotive commerce exchange
US11190608B2 (en) 2018-03-21 2021-11-30 Cdk Global Llc Systems and methods for an automotive commerce exchange
US11277408B2 (en) * 2018-05-21 2022-03-15 Adp, Llc Devices and methods for enabling authorization and communication between indirectly related parties via networked computing systems using data models with nested party relationships
US11252119B2 (en) 2018-06-04 2022-02-15 Salesforce.Com, Inc. Message logging using two-stage message logging mechanisms
CN109165212A (en) * 2018-08-31 2019-01-08 浪潮软件集团有限公司 Big data real-time monitoring and auditing method
US10803202B2 (en) 2018-09-07 2020-10-13 OneTrust, LLC Data processing systems for orphaned data identification and deletion and related methods
US11544409B2 (en) 2018-09-07 2023-01-03 OneTrust, LLC Data processing systems and methods for automatically protecting sensitive data within privacy management systems
US11144675B2 (en) 2018-09-07 2021-10-12 OneTrust, LLC Data processing systems and methods for automatically protecting sensitive data within privacy management systems
EP3678348A1 (en) 2019-01-04 2020-07-08 Ping Identity Corporation Methods and systems for data traffic based adpative security
US11194676B2 (en) 2019-03-26 2021-12-07 International Business Machines Corporation Data synchronization in high availability storage environments
US10977268B2 (en) * 2019-05-31 2021-04-13 Snowflake Inc. Data exchange
WO2021174249A1 (en) * 2020-02-25 2021-09-02 Transposit Corporation Markdown data content with action binding
WO2022011142A1 (en) 2020-07-08 2022-01-13 OneTrust, LLC Systems and methods for targeted data discovery
EP4189569A1 (en) 2020-07-28 2023-06-07 OneTrust LLC Systems and methods for automatically blocking the use of tracking tools
WO2022032072A1 (en) 2020-08-06 2022-02-10 OneTrust, LLC Data processing systems and methods for automatically redacting unstructured data from a data subject access request
US11153412B1 (en) * 2020-08-26 2021-10-19 Software Ag Systems and/or methods for non-intrusive injection of context for service mesh applications
WO2022060860A1 (en) 2020-09-15 2022-03-24 OneTrust, LLC Data processing systems and methods for detecting tools for the automatic blocking of consent requests
US20230334158A1 (en) 2020-09-21 2023-10-19 OneTrust, LLC Data processing systems and methods for automatically detecting target data transfers and target data processing
WO2022099023A1 (en) 2020-11-06 2022-05-12 OneTrust, LLC Systems and methods for identifying data processing activities based on data discovery results
US11080105B1 (en) 2020-11-18 2021-08-03 Cdk Global, Llc Systems, methods, and apparatuses for routing API calls
CN112597508A (en) * 2020-11-20 2021-04-02 深圳市世强元件网络有限公司 Service platform user authority management method and computer equipment
US11514021B2 (en) 2021-01-22 2022-11-29 Cdk Global, Llc Systems, methods, and apparatuses for scanning a legacy database
WO2022159901A1 (en) 2021-01-25 2022-07-28 OneTrust, LLC Systems and methods for discovery, classification, and indexing of data in a native computing system
US11442906B2 (en) 2021-02-04 2022-09-13 OneTrust, LLC Managing custom attributes for domain objects defined within microservices
US11494515B2 (en) 2021-02-08 2022-11-08 OneTrust, LLC Data processing systems and methods for anonymizing data samples in classification analysis
US11561885B2 (en) 2021-02-09 2023-01-24 Bank Of America Corporation Automated end-to-end testing platform with dynamic container configuration
WO2022173912A1 (en) 2021-02-10 2022-08-18 OneTrust, LLC Systems and methods for mitigating risks of third-party computing system functionality integration into a first-party computing system
US11775348B2 (en) 2021-02-17 2023-10-03 OneTrust, LLC Managing custom workflows for domain objects defined within microservices
US11546661B2 (en) 2021-02-18 2023-01-03 OneTrust, LLC Selective redaction of media content
WO2022192269A1 (en) 2021-03-08 2022-09-15 OneTrust, LLC Data transfer discovery and analysis systems and related methods
US11562078B2 (en) 2021-04-16 2023-01-24 OneTrust, LLC Assessing and managing computational risk involved with integrating third party computing functionality within a computing system
US11803535B2 (en) 2021-05-24 2023-10-31 Cdk Global, Llc Systems, methods, and apparatuses for simultaneously running parallel databases
US11620142B1 (en) 2022-06-03 2023-04-04 OneTrust, LLC Generating and customizing user interfaces for demonstrating functions of interactive user environments
US11836545B1 (en) * 2022-06-30 2023-12-05 Amazon Technologies, Inc. Integration of cloud entities in an event architecture
US11861421B1 (en) * 2022-06-30 2024-01-02 Amazon Technologies, Inc. Controlling timing of event data transmissions in an event architecture

Citations (111)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5173939A (en) 1990-09-28 1992-12-22 Digital Equipment Corporation Access control subsystem and method for distributed computer system using compound principals
US5237614A (en) 1991-06-07 1993-08-17 Security Dynamics Technologies, Inc. Integrated network security system
US5335345A (en) 1990-04-11 1994-08-02 Bell Communications Research, Inc. Dynamic query optimization using partial information
US5347653A (en) 1991-06-28 1994-09-13 Digital Equipment Corporation System for reconstructing prior versions of indexes using records indicating changes between successive versions of the indexes
US5355474A (en) 1991-09-27 1994-10-11 Thuraisngham Bhavani M System for multilevel secure database management using a knowledge base with release-based and other security constraints for query, response and update modification
US5369702A (en) 1993-10-18 1994-11-29 Tecsec Incorporated Distributed cryptographic object method
US5426747A (en) 1991-03-22 1995-06-20 Object Design, Inc. Method and apparatus for virtual memory mapping and transaction management in an object-oriented database system
US5481700A (en) 1991-09-27 1996-01-02 The Mitre Corporation Apparatus for design of a multilevel secure database management system based on a multilevel logic programming system
EP0697662A1 (en) * 1994-08-15 1996-02-21 International Business Machines Corporation Method and system for advanced role-based access control in distributed and centralized computer systems
US5544322A (en) 1994-05-09 1996-08-06 International Business Machines Corporation System and method for policy-based inter-realm authentication within a distributed processing system
US5557747A (en) 1993-06-22 1996-09-17 Rogers; Lawrence D. Network policy implementation system for performing network control operations in response to changes in network state
US5627886A (en) 1994-09-22 1997-05-06 Electronic Data Systems Corporation System and method for detecting fraudulent network usage patterns using real-time network monitoring
US5649195A (en) 1995-05-22 1997-07-15 International Business Machines Corporation Systems and methods for synchronizing databases in a receive-only network
US5758355A (en) 1996-08-07 1998-05-26 Aurum Software, Inc. Synchronization of server database with client database using distribution tables
US5757669A (en) 1995-05-31 1998-05-26 Netscape Communications Corporation Method and apparatus for workgroup information replication
US5797128A (en) 1995-07-03 1998-08-18 Sun Microsystems, Inc. System and method for implementing a hierarchical policy for computer system administration
US5826268A (en) 1996-04-12 1998-10-20 Ontos, Inc. Secure multilevel object oriented database management system
US5825883A (en) 1995-10-31 1998-10-20 Interval Systems, Inc. Method and apparatus that accounts for usage of digital applications
US5826000A (en) 1996-02-29 1998-10-20 Sun Microsystems, Inc. System and method for automatic configuration of home network computers
US5838909A (en) 1996-05-23 1998-11-17 Sandcastle, Inc. Reducing latency when synchronizing access to a multi-user database over a network
US5848396A (en) 1996-04-26 1998-12-08 Freedom Of Information, Inc. Method and apparatus for determining behavioral profile of a computer user
US5867667A (en) 1997-03-24 1999-02-02 Pfn, Inc. Publication network control system using domain and client side communications resource locator lists for managing information communications between the domain server and publication servers
US5872928A (en) 1995-02-24 1999-02-16 Cabletron Systems, Inc. Method and apparatus for defining and enforcing policies for configuration management in communications networks
US5889953A (en) 1995-05-25 1999-03-30 Cabletron Systems, Inc. Policy management and conflict resolution in computer networks
US5918210A (en) 1996-06-07 1999-06-29 Electronic Data Systems Corporation Business query tool, using policy objects to provide query responses
US5925126A (en) 1997-03-18 1999-07-20 Memco Software, Ltd. Method for security shield implementation in computer system's software
US5941947A (en) 1995-08-18 1999-08-24 Microsoft Corporation System and method for controlling access to data entities in a computer network
US5950195A (en) 1996-09-18 1999-09-07 Secure Computing Corporation Generalized security policy management system and method
US5956719A (en) 1996-03-29 1999-09-21 Fujitsu Limited Synchronization method applied to databases in network management system
US5954798A (en) 1997-10-06 1999-09-21 Ncr Corporation Mechanism for dependably managing web synchronization and tracking operations among multiple browsers
US5956400A (en) 1996-07-19 1999-09-21 Digicash Incorporated Partitioned information storage systems with controlled retrieval
US5966707A (en) 1997-12-02 1999-10-12 International Business Machines Corporation Method for managing a plurality of data processes residing in heterogeneous data repositories
US5987611A (en) 1996-12-31 1999-11-16 Zone Labs, Inc. System and methodology for managing internet access on a per application basis for client computers connected to the internet
US5987469A (en) 1996-05-14 1999-11-16 Micro Logic Corp. Method and apparatus for graphically representing information stored in electronic media
US5991877A (en) 1997-04-03 1999-11-23 Lockheed Martin Corporation Object-oriented trusted application framework
US6006265A (en) 1998-04-02 1999-12-21 Hotv, Inc. Hyperlinks resolution at and by a special network server in order to enable diverse sophisticated hyperlinking upon a digital network
US6005571A (en) 1997-09-30 1999-12-21 Softline, Inc. Graphical user interface for managing security in a database system
US6006194A (en) 1997-10-01 1999-12-21 Merel; Peter A. Computer-implemented system for controlling resources and policies
US6009410A (en) 1997-10-16 1999-12-28 At&T Corporation Method and system for presenting customized advertising to a user on the world wide web
US6026433A (en) 1997-03-17 2000-02-15 Silicon Graphics, Inc. Method of creating and editing a web site in a client-server environment using customizable web site templates
US6029182A (en) 1996-10-04 2000-02-22 Canon Information Systems, Inc. System for generating a custom formatted hypertext document by using a personal profile to retrieve hierarchical documents
US6029196A (en) 1997-06-18 2000-02-22 Netscape Communications Corporation Automatic client configuration system
US6029144A (en) 1997-08-29 2000-02-22 International Business Machines Corporation Compliance-to-policy detection method and system
US6055515A (en) 1996-07-30 2000-04-25 International Business Machines Corporation Enhanced tree control system for navigating lattices data structures and displaying configurable lattice-node labels
US6054910A (en) 1995-12-12 2000-04-25 Murata Manufacturing Co., Ltd. Dielectric filter having an inner conductor with two open-circuited inner ends
US6055637A (en) * 1996-09-27 2000-04-25 Electronic Data Systems Corporation System and method for accessing enterprise-wide resources by presenting to the resource a temporary credential
US6058392A (en) 1996-11-18 2000-05-02 Wesley C. Sampson Revocable Trust Method for the organizational indexing, storage, and retrieval of data according to data pattern signatures
US6073242A (en) 1998-03-19 2000-06-06 Agorics, Inc. Electronic authority server
US6081829A (en) 1996-01-31 2000-06-27 Silicon Graphics, Inc. General purpose web annotations without modifying browser
US6083276A (en) 1998-06-11 2000-07-04 Corel, Inc. Creating and configuring component-based applications using a text-based descriptive attribute grammar
US6088679A (en) 1997-12-01 2000-07-11 The United States Of America As Represented By The Secretary Of Commerce Workflow management employing role-based access control
US6092083A (en) 1997-02-26 2000-07-18 Siebel Systems, Inc. Database management system which synchronizes an enterprise server and a workgroup user client using a docking agent
US6098173A (en) 1997-11-27 2000-08-01 Security-7 (Software) Ltd. Method and system for enforcing a communication security policy
US6105027A (en) 1997-03-10 2000-08-15 Internet Dynamics, Inc. Techniques for eliminating redundant access checking by access filters
US6108687A (en) 1998-03-02 2000-08-22 Hewlett Packard Company System and method for providing a synchronized display to a plurality of computers over a global computer network
US6112192A (en) 1997-05-09 2000-08-29 International Business Machines Corp. Method for providing individually customized content in a network
US6122647A (en) 1998-05-19 2000-09-19 Perspecta, Inc. Dynamic generation of contextual links in hypertext documents
US6128663A (en) 1997-02-11 2000-10-03 Invention Depot, Inc. Method and apparatus for customization of information content provided to a requestor over a network using demographic information yet the user remains anonymous to the server
US6133915A (en) 1998-06-17 2000-10-17 Microsoft Corporation System and method for customizing controls on a toolbar
US6141686A (en) 1998-03-13 2000-10-31 Deterministic Networks, Inc. Client-side application-classifier gathering network-traffic statistics and application and user names using extensible-service provider plugin for policy-based network control
US6141010A (en) 1998-07-17 2000-10-31 B. E. Technology, Llc Computer interface method and apparatus with targeted advertising
US6148333A (en) 1998-05-13 2000-11-14 Mgi Software Corporation Method and system for server access control and tracking
US6154844A (en) 1996-11-08 2000-11-28 Finjan Software, Ltd. System and method for attaching a downloadable security profile to a downloadable
US6158010A (en) 1998-10-28 2000-12-05 Crosslogix, Inc. System and method for maintaining security in a distributed computer network
US6157924A (en) 1997-11-07 2000-12-05 Bell & Howell Mail Processing Systems Company Systems, methods, and computer program products for delivering information in a preferred medium
US6161139A (en) * 1998-07-10 2000-12-12 Encommerce, Inc. Administrative roles that govern access to administrative functions
US6167407A (en) 1998-06-03 2000-12-26 Symantec Corporation Backtracked incremental updating
US6167445A (en) 1998-10-26 2000-12-26 Cisco Technology, Inc. Method and apparatus for defining and implementing high-level quality of service policies in computer networks
US6167448A (en) 1998-06-11 2000-12-26 Compaq Computer Corporation Management event notification system using event notification messages written using a markup language
US6170009B1 (en) 1998-07-17 2001-01-02 Kallol Mandal Controlling devices on a network through policies
US6169794B1 (en) 1997-12-05 2001-01-02 Fujitsu Limited Method and apparatus for synchronizing databases within intelligent network
US6178172B1 (en) 1998-03-24 2001-01-23 3Com Corporation Method of topology database synchronization in an asynchronous transfer mode network
US6182226B1 (en) 1998-03-18 2001-01-30 Secure Computing Corporation System and method for controlling interactions between networks
US6182277B1 (en) 1998-04-15 2001-01-30 Oracle Corporation Methods and apparatus for declarative programming techniques in an object oriented environment
US6185587B1 (en) 1997-06-19 2001-02-06 International Business Machines Corporation System and method for building a web site with automated help
US6188399B1 (en) 1998-05-08 2001-02-13 Apple Computer, Inc. Multiple theme engine graphical user interface architecture
US6195696B1 (en) 1998-10-01 2001-02-27 International Business Machines Corporation Systems, methods and computer program products for assigning, generating and delivering content to intranet users
US6202066B1 (en) * 1997-11-19 2001-03-13 The United States Of America As Represented By The Secretary Of Commerce Implementation of role/group permission association using object access type
US6202207B1 (en) 1998-01-28 2001-03-13 International Business Machines Corporation Method and a mechanism for synchronized updating of interoperating software
US6202157B1 (en) 1997-12-08 2001-03-13 Entrust Technologies Limited Computer network security system and method having unilateral enforceable security policy provision
US6205466B1 (en) 1998-07-17 2001-03-20 Hewlett-Packard Company Infrastructure for an open digital services marketplace
US6209101B1 (en) 1998-07-17 2001-03-27 Secure Computing Corporation Adaptive security system having a hierarchy of security servers
US6216231B1 (en) 1996-04-30 2001-04-10 At & T Corp. Specifying security protocols and policy constraints in distributed systems
US6226745B1 (en) 1997-03-21 2001-05-01 Gio Wiederhold Information sharing system and method with requester dependent sharing and security rules
US6233576B1 (en) 1995-06-09 2001-05-15 International Business Machines Corporation Enhanced security for computer system resources with a resource access authorization control facility that creates files and provides increased granularity of resource permission
US6236991B1 (en) 1997-11-26 2001-05-22 International Business Machines Corp. Method and system for providing access for categorized information from online internet and intranet sources
US6241608B1 (en) 1997-01-15 2001-06-05 Lawrence J. Torango Progressive wagering system
US6253321B1 (en) 1998-06-19 2001-06-26 Ssh Communications Security Ltd. Method and arrangement for implementing IPSEC policy management using filter code
US6260050B1 (en) 1999-03-23 2001-07-10 Microstrategy, Inc. System and method of adapting automatic output of service related OLAP reports to disparate output devices
US6269456B1 (en) 1997-12-31 2001-07-31 Network Associates, Inc. Method and system for providing automated updating and upgrading of antivirus applications using a computer network
US6269393B1 (en) 1999-03-23 2001-07-31 Microstrategy, Inc. System and method for automatic transmission of personalized OLAP report output
US6275941B1 (en) 1997-03-28 2001-08-14 Hiatchi, Ltd. Security management method for network system
US6285983B1 (en) 1998-10-21 2001-09-04 Lend Lease Corporation Ltd. Marketing systems and methods that preserve consumer privacy
US6285366B1 (en) 1998-06-30 2001-09-04 Sun Microsystems, Inc. Hierarchy navigation system
US6285985B1 (en) 1998-04-03 2001-09-04 Preview Systems, Inc. Advertising-subsidized and advertising-enabled software
US6295607B1 (en) 1998-04-06 2001-09-25 Bindview Development Corporation System and method for security control in a data processing system
US6301613B1 (en) 1998-12-03 2001-10-09 Cisco Technology, Inc. Verifying that a network management policy used by a computer system can be satisfied and is feasible for use
US6304881B1 (en) 1998-03-03 2001-10-16 Pumatech, Inc. Remote data access and synchronization
US6308163B1 (en) 1999-03-16 2001-10-23 Hewlett-Packard Company System and method for enterprise workflow resource management
US20010047485A1 (en) * 2000-03-06 2001-11-29 Daniel Brown Computer security system
US6357010B1 (en) * 1998-02-17 2002-03-12 Secure Computing Corporation System and method for controlling access to documents stored on an internal network
US20020147801A1 (en) * 2001-01-29 2002-10-10 Gullotta Tony J. System and method for provisioning resources to users based on policies, roles, organizational information, and attributes
US20020178119A1 (en) * 2001-05-24 2002-11-28 International Business Machines Corporation Method and system for a role-based access control model with active roles
US20020188869A1 (en) * 2001-06-11 2002-12-12 Paul Patrick System and method for server security and entitlement processing
US20030046576A1 (en) * 2001-08-30 2003-03-06 International Business Machines Corporation Role-permission model for security policy administration and enforcement
US6574736B1 (en) * 1998-11-30 2003-06-03 Microsoft Corporation Composable roles
US6581054B1 (en) * 1999-07-30 2003-06-17 Computer Associates Think, Inc. Dynamic query model and method
US6735624B1 (en) * 2000-04-07 2004-05-11 Danger, Inc. Method for configuring and authenticating newly delivered portal device
US6751657B1 (en) * 1999-12-21 2004-06-15 Worldcom, Inc. System and method for notification subscription filtering based on user role
US6886100B2 (en) * 2001-05-15 2005-04-26 Hewlett-Packard Development Company, L.P. Disabling tool execution via roles
US7185192B1 (en) * 2000-07-07 2007-02-27 Emc Corporation Methods and apparatus for controlling access to a resource

Family Cites Families (227)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0307163B1 (en) * 1987-09-10 1993-12-08 Kawasaki Steel Corporation Silicon steel sheets having low iron loss and method of producing the same
US5577209A (en) 1991-07-11 1996-11-19 Itt Corporation Apparatus and method for providing multi-level security for communication among computers and terminals on a network
CA2123924A1 (en) * 1993-06-02 1994-12-03 Charles Douglas Blewett Specifying contexts in callback style programming
JP2533456B2 (en) * 1993-06-16 1996-09-11 日東電工株式会社 Label and label base material and ink
JPH0798669A (en) 1993-08-05 1995-04-11 Hitachi Ltd Distributed data base management system
DE4437158C1 (en) * 1994-10-18 1995-10-19 Ant Nachrichtentech De / multiplexer of frequency bands
DE69637799D1 (en) * 1995-02-13 2009-02-12 Intertrust Tech Corp Systems and procedures for secure transaction management and electronic legal protection
US6026368A (en) * 1995-07-17 2000-02-15 24/7 Media, Inc. On-line interactive system and method for providing content and advertising information to a targeted set of viewers
US6249795B1 (en) * 1995-10-27 2001-06-19 At&T Corp. Personalizing the display of changes to records in an on-line repository
US5835092A (en) * 1996-04-09 1998-11-10 Silicon Graphics, Inc. Mechanism for non-linear browsing of diverse information sources
US6088451A (en) 1996-06-28 2000-07-11 Mci Communications Corporation Security system and method for network element access
US5713939A (en) * 1996-09-16 1998-02-03 Sulzer Intermedics Inc. Data communication system for control of transcutaneous energy transmission to an implantable medical device
US5758335A (en) * 1996-09-27 1998-05-26 Bull Hn Information Systems Inc. Optimizing table join ordering using graph theory prior to query optimization
US5926816A (en) * 1996-10-09 1999-07-20 Oracle Corporation Database Synchronizer
US5884325A (en) * 1996-10-09 1999-03-16 Oracle Corporation System for synchronizing shared data between computers
US6292900B1 (en) * 1996-12-18 2001-09-18 Sun Microsystems, Inc. Multilevel security attribute passing methods, apparatuses, and computer program products in a stream
US6233686B1 (en) 1997-01-17 2001-05-15 At & T Corp. System and method for providing peer level access control on a network
KR20000064776A (en) * 1997-01-24 2000-11-06 이데이 노부유끼 Apparatus for generating a shape data, a method for generating the shape data, and a medium thereof
US6408336B1 (en) * 1997-03-10 2002-06-18 David S. Schneider Distributed administration of access to information
US6148311A (en) * 1997-04-25 2000-11-14 Adobe Systems Incorporation Web site construction by inferring navigational structure from physical file structure
US6191786B1 (en) 1997-04-25 2001-02-20 Alan K. Eyzaguirre Navigational file system
US6006285A (en) 1997-04-30 1999-12-21 Compaq Computer Corporation Computer system capable of playing audio CDs in a CD-ROM drive independent of an operating system
US5983227A (en) * 1997-06-12 1999-11-09 Yahoo, Inc. Dynamic page generator
US6684369B1 (en) * 1997-06-19 2004-01-27 International Business Machines, Corporation Web site creator using templates
US6460084B1 (en) * 1997-08-28 2002-10-01 Cisco Technology, Inc. Forced network portal
EP0903780A3 (en) * 1997-09-19 1999-08-25 Texas Instruments Incorporated Method and apparatus for a wire bonded package for integrated circuits
US5991879A (en) 1997-10-23 1999-11-23 Bull Hn Information Systems Inc. Method for gradual deployment of user-access security within a data processing system
US6317868B1 (en) 1997-10-24 2001-11-13 University Of Washington Process for transparently enforcing protection domains and access control as well as auditing operations in software components
US6070244A (en) 1997-11-10 2000-05-30 The Chase Manhattan Bank Computer network security management system
US6385627B1 (en) * 1997-11-24 2002-05-07 International Business Machines Corporation Method, apparatus and computer program product for providing document user role indication
US6654747B1 (en) * 1997-12-02 2003-11-25 International Business Machines Corporation Modular scalable system for managing data in a heterogeneous environment with generic structure for control repository access transactions
US6360363B1 (en) * 1997-12-31 2002-03-19 Eternal Systems, Inc. Live upgrade process for object-oriented programs
US6449638B1 (en) * 1998-01-07 2002-09-10 Microsoft Corporation Channel definition architecture extension
US6230271B1 (en) 1998-01-20 2001-05-08 Pilot Network Services, Inc. Dynamic policy-based apparatus for wide-range configurable network service authentication and access control using a fixed-path hardware configuration
US6055636A (en) 1998-01-27 2000-04-25 Entrust Technologies, Limited Method and apparatus for centralizing processing of key and certificate life cycle management
JP3609599B2 (en) * 1998-01-30 2005-01-12 富士通株式会社 Node proxy system, node monitoring system, method thereof, and recording medium
CA2228687A1 (en) * 1998-02-04 1999-08-04 Brett Howard Secured virtual private networks
US6484261B1 (en) 1998-02-17 2002-11-19 Cisco Technology, Inc. Graphical network security policy management
US5925136A (en) * 1998-03-02 1999-07-20 Fairchild Semiconductor Corporation Difference capture timer
US6618806B1 (en) * 1998-04-01 2003-09-09 Saflink Corporation System and method for authenticating users in a computer network
US6339826B2 (en) * 1998-05-05 2002-01-15 International Business Machines Corp. Client-server system for maintaining a user desktop consistent with server application user access permissions
US7143151B1 (en) * 1998-05-19 2006-11-28 Hitachi, Ltd. Network management system for generating setup information for a plurality of devices based on common meta-level information
TW376497B (en) * 1998-05-26 1999-12-11 Koninkl Philips Electronics Nv Transmission system for transmitting a main signal and an auxiliary signal
US6735701B1 (en) * 1998-06-25 2004-05-11 Macarthur Investments, Llc Network policy management and effectiveness system
CA2239894A1 (en) * 1998-06-29 1999-12-29 Louis Obidniak Pivotable gutter assembly and kit therefor
US6453353B1 (en) * 1998-07-10 2002-09-17 Entrust, Inc. Role-based navigation of information resources
US6615218B2 (en) 1998-07-17 2003-09-02 Sun Microsystems, Inc. Database for executing policies for controlling devices on a network
US6144988A (en) * 1998-07-23 2000-11-07 Experian Marketing Solutions, Inc. Computer system and method for securely formatting and mapping data for internet web sites
US6426141B1 (en) * 1998-07-24 2002-07-30 Cognis Deutschland Gmbh & Co. Kg High-speed false-twist texturing process
WO2000008573A1 (en) * 1998-08-04 2000-02-17 Rulespace, Inc. Method and system for deriving computer users' personal interests
US6397222B1 (en) * 1998-08-07 2002-05-28 Paul Zellweger Method and apparatus for end-user management of a content menu on a network
US6466932B1 (en) * 1998-08-14 2002-10-15 Microsoft Corporation System and method for implementing group policy
US6473791B1 (en) 1998-08-17 2002-10-29 Microsoft Corporation Object load balancing
US6397231B1 (en) * 1998-08-31 2002-05-28 Xerox Corporation Virtual documents generated via combined documents or portions of documents retrieved from data repositories
US20020062451A1 (en) * 1998-09-01 2002-05-23 Scheidt Edward M. System and method of providing communication security
US6412070B1 (en) * 1998-09-21 2002-06-25 Microsoft Corporation Extensible security system and method for controlling access to objects in a computing environment
US6377973B2 (en) * 1998-09-30 2002-04-23 Emrys Technologies, Ltd. Event management in a system with application and graphical user interface processing adapted to display predefined graphical elements resides separately on server and client machine
US6341352B1 (en) * 1998-10-15 2002-01-22 International Business Machines Corporation Method for changing a security policy during processing of a transaction request
US6477543B1 (en) * 1998-10-23 2002-11-05 International Business Machines Corporation Method, apparatus and program storage device for a client and adaptive synchronization and transformation server
US6463470B1 (en) * 1998-10-26 2002-10-08 Cisco Technology, Inc. Method and apparatus of storing policies for policy-based management of quality of service treatments of network data traffic flows
US7673323B1 (en) * 1998-10-28 2010-03-02 Bea Systems, Inc. System and method for maintaining security in a distributed computer network
US6460141B1 (en) * 1998-10-28 2002-10-01 Rsa Security Inc. Security and access management system for web-enabled and non-web-enabled applications and content on a computer network
JP3856969B2 (en) * 1998-11-02 2006-12-13 株式会社日立製作所 Object analysis design support method
US6530024B1 (en) * 1998-11-20 2003-03-04 Centrax Corporation Adaptive feedback security system and method
US6466949B2 (en) * 1998-11-23 2002-10-15 Myway.Com Corporation Performing event notification in a database having a distributed web cluster
JP2000163344A (en) * 1998-11-27 2000-06-16 Nec Corp Data base recovery system for network management system
US6327618B1 (en) 1998-12-03 2001-12-04 Cisco Technology, Inc. Recognizing and processing conflicts in network management policies
US8266266B2 (en) * 1998-12-08 2012-09-11 Nomadix, Inc. Systems and methods for providing dynamic network authorization, authentication and accounting
US6381579B1 (en) * 1998-12-23 2002-04-30 International Business Machines Corporation System and method to provide secure navigation to resources on the internet
US6393474B1 (en) 1998-12-31 2002-05-21 3Com Corporation Dynamic policy management apparatus and method using active network devices
US6668354B1 (en) * 1999-01-05 2003-12-23 International Business Machines Corporation Automatic display script and style sheet generation
US6510513B1 (en) * 1999-01-13 2003-01-21 Microsoft Corporation Security services and policy enforcement for electronic data
US6412077B1 (en) 1999-01-14 2002-06-25 Cisco Technology, Inc. Disconnect policy for distributed computing systems
US6327594B1 (en) 1999-01-29 2001-12-04 International Business Machines Corporation Methods for shared data management in a pervasive computing environment
US6542993B1 (en) * 1999-03-12 2003-04-01 Lucent Technologies Inc. Security management system and method
US6715077B1 (en) * 1999-03-23 2004-03-30 International Business Machines Corporation System and method to support varying maximum cryptographic strength for common data security architecture (CDSA) applications
US6463440B1 (en) * 1999-04-08 2002-10-08 International Business Machines Corporation Retrieval of style sheets from directories based upon partial characteristic matching
US6801949B1 (en) * 1999-04-12 2004-10-05 Rainfinity, Inc. Distributed server cluster with graphical user interface
US6757698B2 (en) * 1999-04-14 2004-06-29 Iomega Corporation Method and apparatus for automatically synchronizing data from a host computer to two or more backup data storage locations
US20030069874A1 (en) * 1999-05-05 2003-04-10 Eyal Hertzog Method and system to automate the updating of personal information within a personal information management application and to synchronize such updated personal information management applications
US6015027A (en) * 1999-05-06 2000-01-18 Banks; Frank Escape ladder assembly
GB9912494D0 (en) * 1999-05-28 1999-07-28 Hewlett Packard Co Configuring computer systems
US7472349B1 (en) * 1999-06-01 2008-12-30 Oracle International Corporation Dynamic services infrastructure for allowing programmatic access to internet and other resources
US6988138B1 (en) * 1999-06-30 2006-01-17 Blackboard Inc. Internet-based education support system and methods
US6241352B1 (en) * 1999-07-09 2001-06-05 Cabot Safety Intermediate Corporation Lens overlays for eyewear
US6519647B1 (en) * 1999-07-23 2003-02-11 Microsoft Corporation Methods and apparatus for synchronizing access control in a web server
US6769095B1 (en) * 1999-07-23 2004-07-27 Codagen Technologies Corp. Hierarchically structured control information editor
JP3596805B2 (en) * 1999-07-29 2004-12-02 松下電器産業株式会社 Information terminal device and route guidance method
US6834284B2 (en) * 1999-08-12 2004-12-21 International Business Machines Corporation Process and system for providing name service scoping behavior in java object-oriented environment
US6339423B1 (en) * 1999-08-23 2002-01-15 Entrust, Inc. Multi-domain access control
US6587876B1 (en) * 1999-08-24 2003-07-01 Hewlett-Packard Development Company Grouping targets of management policies
US6934934B1 (en) * 1999-08-30 2005-08-23 Empirix Inc. Method and system for software object testing
US6912691B1 (en) * 1999-09-03 2005-06-28 Cisco Technology, Inc. Delivering voice portal services using an XML voice-enabled web server
US6220206B1 (en) * 1999-09-29 2001-04-24 Vidal E. Sotillo Method for producing a cat litter from grain milling byproducts
CA2386168A1 (en) * 1999-10-01 2001-04-12 Infoglide Corporation System and method for transforming a relational database to a hierarchical database
US7051316B2 (en) * 1999-10-05 2006-05-23 Borland Software Corporation Distributed computing component system with diagrammatic graphical representation of code with separate delineated display area by type
US6430556B1 (en) * 1999-11-01 2002-08-06 Sun Microsystems, Inc. System and method for providing a query object development environment
US6418452B1 (en) * 1999-11-03 2002-07-09 International Business Machines Corporation Network repository service directory for efficient web crawling
US6865549B1 (en) * 1999-11-15 2005-03-08 Sun Microsystems, Inc. Method and apparatus for concurrency control in a policy-based management system
JP3963417B2 (en) * 1999-11-19 2007-08-22 株式会社東芝 Communication method and electronic device for data synchronization processing
US6721888B1 (en) * 1999-11-22 2004-04-13 Sun Microsystems, Inc. Mechanism for merging multiple policies
AU4717901A (en) * 1999-12-06 2001-06-25 Warp Solutions, Inc. System and method for dynamic content routing
US6418448B1 (en) * 1999-12-06 2002-07-09 Shyam Sundar Sarkar Method and apparatus for processing markup language specifications for data and metadata used inside multiple related internet documents to navigate, query and manipulate information from a plurality of object relational databases over the web
US6587849B1 (en) * 1999-12-10 2003-07-01 Art Technology Group, Inc. Method and system for constructing personalized result sets
WO2001042966A2 (en) * 1999-12-13 2001-06-14 Novient, Inc. Attribute and application synchronization in distributed network environment
AU2582401A (en) * 1999-12-17 2001-06-25 Dorado Network Systems Corporation Purpose-based adaptive rendering
EP1247228A4 (en) * 1999-12-23 2003-03-12 Concept Shopping Inc Techniques for optimizing promotion delivery
US6584454B1 (en) * 1999-12-31 2003-06-24 Ge Medical Technology Services, Inc. Method and apparatus for community management in remote system servicing
US6633855B1 (en) * 2000-01-06 2003-10-14 International Business Machines Corporation Method, system, and program for filtering content using neural networks
US6484177B1 (en) 2000-01-13 2002-11-19 International Business Machines Corporation Data management interoperability methods for heterogeneous directory structures
EP1117220A1 (en) * 2000-01-14 2001-07-18 Sun Microsystems, Inc. Method and system for protocol conversion
EP1117050A1 (en) * 2000-01-14 2001-07-18 Sun Microsystems, Inc. Individual data representation
US6694336B1 (en) * 2000-01-25 2004-02-17 Fusionone, Inc. Data transfer and synchronization system
US20040205473A1 (en) * 2000-01-27 2004-10-14 Gwyn Fisher Method and system for implementing an enterprise information portal
WO2001059623A2 (en) * 2000-02-08 2001-08-16 Onepage, Inc. System and method for dynamic aggregation of content distributed over a computer network
US6901403B1 (en) * 2000-03-02 2005-05-31 Quovadx, Inc. XML presentation of general-purpose data sources
AU2001245406A1 (en) * 2000-03-03 2001-09-17 Merinta, Inc. Persistent portal for a browser
AU2001251195A1 (en) * 2000-03-30 2001-10-15 Cygent, Inc. System and method for establishing electronic business systems for supporting communications services commerce
US6751659B1 (en) * 2000-03-31 2004-06-15 Intel Corporation Distributing policy information in a communication network
US6880005B1 (en) * 2000-03-31 2005-04-12 Intel Corporation Managing policy rules in a network
US6701522B1 (en) * 2000-04-07 2004-03-02 Danger, Inc. Apparatus and method for portal device authentication
US7278153B1 (en) * 2000-04-12 2007-10-02 Seachange International Content propagation in interactive television
GB2361332A (en) * 2000-04-13 2001-10-17 Int Computers Ltd Electronic content store
US20020049815A1 (en) * 2000-04-14 2002-04-25 Kayshav Dattatri System for monitoring and managing information and information transfers in a computer network
US6697805B1 (en) * 2000-04-14 2004-02-24 Microsoft Corporation XML methods and systems for synchronizing multiple computing devices
JP3869621B2 (en) * 2000-04-24 2007-01-17 パナソニック コミュニケーションズ株式会社 Document distribution device and mobile phone device
US7266821B2 (en) * 2000-04-27 2007-09-04 Hyperion Solutions Corporation Method and apparatus for processing jobs on an enterprise-wide computer system
US20020103818A1 (en) * 2000-05-04 2002-08-01 Kirkfire, Inc. Information repository system and method for an internet portal system
US6327628B1 (en) * 2000-05-19 2001-12-04 Epicentric, Inc. Portal server that provides a customizable user Interface for access to computer networks
AU2001263341A1 (en) * 2000-05-22 2001-12-03 Sap Portals Inc. Snippet selection
US6757822B1 (en) * 2000-05-31 2004-06-29 Networks Associates Technology, Inc. System, method and computer program product for secure communications using a security service provider manager
US20020019827A1 (en) * 2000-06-05 2002-02-14 Shiman Leon G. Method and apparatus for managing documents in a centralized document repository system
US6831783B2 (en) * 2000-06-07 2004-12-14 Canon Kabushiki Kaisha Diffractive optical element and optical system
US6779002B1 (en) * 2000-06-13 2004-08-17 Sprint Communications Company L.P. Computer software framework and method for synchronizing data across multiple databases
US6785721B1 (en) * 2000-06-19 2004-08-31 International Business Machines Corporation System and method for providing a distributable runtime that deploys web applications and services from a workflow, enterprise, and mail-enabled web application server and platform
US20020194267A1 (en) * 2000-06-23 2002-12-19 Daniel Flesner Portal server that provides modification of user interfaces for access to computer networks
US6237628B1 (en) * 2000-07-10 2001-05-29 Fleetguard, Inc. Self-centering water drain valve
US6257924B1 (en) * 2000-08-22 2001-07-10 International Business Machines Corporation Stacked electrical connector assembly protector
US20020024536A1 (en) * 2000-08-25 2002-02-28 Michal Kahan Method and apparatus for information aggregation and personalized display of the aggregated information
US7150015B2 (en) * 2000-09-01 2006-12-12 Pace Charles P Method and system for deploying an asset over a multi-tiered network
GB0021513D0 (en) * 2000-09-01 2000-10-18 E2 One Uk Ltd Method and system for dynamic web-page generation and computer-readable storage medium storing a program for performing the method
US7599851B2 (en) * 2000-09-05 2009-10-06 Renee Frengut Method for providing customized user interface and targeted marketing forum
US6954751B2 (en) * 2000-09-06 2005-10-11 Oracle International Corporation Accessing data stored at an intermediary from a service
US6581071B1 (en) * 2000-09-12 2003-06-17 Survivors Of The Shoah Visual History Foundation Surveying system and method
US6477575B1 (en) 2000-09-12 2002-11-05 Capital One Financial Corporation System and method for performing dynamic Web marketing and advertising
US6754672B1 (en) * 2000-09-13 2004-06-22 American Management Systems, Inc. System and method for efficient integration of government administrative and program systems
EP1325469A4 (en) * 2000-09-15 2006-11-29 Invensys Sys Inc A method and system for animating graphical user interface elements via manufacturing/process control portal server
US6856999B2 (en) * 2000-10-02 2005-02-15 Microsoft Corporation Synchronizing a store with write generations
US6772157B2 (en) * 2000-10-19 2004-08-03 General Electric Company Delegated administration of information in a database directory
US6912538B2 (en) * 2000-10-20 2005-06-28 Kevin Stapel System and method for dynamic generation of structured documents
US6970939B2 (en) * 2000-10-26 2005-11-29 Intel Corporation Method and apparatus for large payload distribution in a network
US6636167B1 (en) * 2000-10-31 2003-10-21 Intel Corporation Method of generating Huffman code length information
US6725446B1 (en) * 2000-11-01 2004-04-20 Digital Integrator, Inc. Information distribution method and system
US7051084B1 (en) * 2000-11-02 2006-05-23 Citrix Systems, Inc. Methods and apparatus for regenerating and transmitting a partial page
KR100398711B1 (en) * 2000-11-08 2003-09-19 주식회사 와이즈엔진 Content publication system for supporting real-time integration and processing of multimedia contents including dynamic data and method thereof
US7647387B2 (en) * 2000-12-01 2010-01-12 Oracle International Corporation Methods and systems for rule-based distributed and personlized content delivery
US6769118B2 (en) * 2000-12-19 2004-07-27 International Business Machines Corporation Dynamic, policy based management of administrative procedures within a distributed computing environment
US6889222B1 (en) * 2000-12-26 2005-05-03 Aspect Communications Corporation Method and an apparatus for providing personalized service
US7467212B2 (en) * 2000-12-28 2008-12-16 Intel Corporation Control of access control lists based on social networks
US20020087432A1 (en) * 2000-12-29 2002-07-04 Ivette Muniz Product configurator method and system
US20020095332A1 (en) * 2001-01-16 2002-07-18 Doherty Timothy K. Internet advertisement system and method
US7093285B2 (en) * 2001-01-31 2006-08-15 International Business Machines Corporation Supplier portal for global procurement e-business applications
US7136912B2 (en) * 2001-02-08 2006-11-14 Solid Information Technology Oy Method and system for data management
US20020107913A1 (en) * 2001-02-08 2002-08-08 Rivera Gustavo R. System and method for rendering documents in a user-familiar format
KR100393273B1 (en) * 2001-02-12 2003-07-31 (주)폴리픽스 An Online Data Communicating System and a Method in a Private Network
US6985915B2 (en) * 2001-02-28 2006-01-10 Kiran Somalwar Application independent write monitoring method for fast backup and synchronization of files
JP3702800B2 (en) * 2001-03-12 2005-10-05 日本電気株式会社 Organization portal system
WO2002076077A1 (en) * 2001-03-16 2002-09-26 Leap Wireless International, Inc. Method and system for distributing content over a wireless communications system
US6904454B2 (en) * 2001-03-21 2005-06-07 Nokia Corporation Method and apparatus for content repository with versioning and data modeling
US7062490B2 (en) * 2001-03-26 2006-06-13 Microsoft Corporation Serverless distributed file system
US20020173971A1 (en) * 2001-03-28 2002-11-21 Stirpe Paul Alan System, method and application of ontology driven inferencing-based personalization systems
US6915482B2 (en) * 2001-03-28 2005-07-05 Cyber Watcher As Method and arrangement for web information monitoring
US7080000B1 (en) * 2001-03-30 2006-07-18 Mcafee, Inc. Method and system for bi-directional updating of antivirus database
US7007244B2 (en) * 2001-04-20 2006-02-28 Microsoft Corporation Method and system for displaying categorized information on a user interface
US7003578B2 (en) * 2001-04-26 2006-02-21 Hewlett-Packard Development Company, L.P. Method and system for controlling a policy-based network
US20020161903A1 (en) * 2001-04-30 2002-10-31 Besaw Lawrence M. System for secure access to information provided by a web application
US7047522B1 (en) * 2001-04-30 2006-05-16 General Electric Capital Corporation Method and system for verifying a computer program
US6970876B2 (en) * 2001-05-08 2005-11-29 Solid Information Technology Method and arrangement for the management of database schemas
US20020169893A1 (en) * 2001-05-09 2002-11-14 Li-Han Chen System and method for computer data synchronization
DE50101548D1 (en) * 2001-05-17 2004-04-01 Presmar Peter Virtual database of heterogeneous data structures
US6879972B2 (en) * 2001-06-15 2005-04-12 International Business Machines Corporation Method for designing a knowledge portal
US6873988B2 (en) * 2001-07-06 2005-03-29 Check Point Software Technologies, Inc. System and methods providing anti-virus cooperative enforcement
US20030014442A1 (en) * 2001-07-16 2003-01-16 Shiigi Clyde K. Web site application development method using object model for managing web-based content
CA2354443A1 (en) * 2001-07-31 2003-01-31 Ibm Canada Limited-Ibm Canada Limitee Method and system for visually constructing xml schemas using an object-oriented model
US6922695B2 (en) * 2001-09-06 2005-07-26 Initiate Systems, Inc. System and method for dynamically securing dynamic-multi-sourced persisted EJBS
US20030146937A1 (en) * 2001-09-11 2003-08-07 Lee Seung Woo Multi-level data management system
WO2003030547A1 (en) * 2001-09-12 2003-04-10 Opentv, Inc. A method and apparatus for disconnected chat room lurking in an interactive television environment
US7035944B2 (en) * 2001-09-19 2006-04-25 International Business Machines Corporation Programmatic management of software resources in a content framework environment
US6985939B2 (en) * 2001-09-19 2006-01-10 International Business Machines Corporation Building distributed software services as aggregations of other services
US7765484B2 (en) * 2001-09-28 2010-07-27 Aol Inc. Passive personalization of lists
AU2002334721B2 (en) * 2001-09-28 2008-10-23 Oracle International Corporation An index structure to access hierarchical data in a relational database system
US7134076B2 (en) * 2001-10-04 2006-11-07 International Business Machines Corporation Method and apparatus for portable universal resource locator and coding across runtime environments
US6854035B2 (en) * 2001-10-05 2005-02-08 International Business Machines Corporation Storage area network methods and apparatus for display and management of a hierarchical file system extension policy
US7496645B2 (en) * 2001-10-18 2009-02-24 Hewlett-Packard Development Company, L.P. Deployment of business logic software and data content onto network servers
AU2002336667B2 (en) * 2001-10-24 2007-06-21 Oracle International Corporation Data synchronization
US6918088B2 (en) * 2001-11-05 2005-07-12 Sun Microsystems, Inc. Service portal with application framework for facilitating application and feature development
US7054910B1 (en) * 2001-12-20 2006-05-30 Emc Corporation Data replication facility for distributed computing environments
US7080083B2 (en) * 2001-12-21 2006-07-18 Kim Hong J Extensible stylesheet designs in visual graphic environments
US7035857B2 (en) * 2002-01-04 2006-04-25 Hewlett-Packard Development Company, L.P. Method and apparatus for increasing the functionality and ease of use of lights out management in a directory enabled environment
US20030187956A1 (en) * 2002-04-01 2003-10-02 Stephen Belt Method and apparatus for providing access control and content management services
US20030216938A1 (en) * 2002-05-16 2003-11-20 Shimon Shour Intelligent health care knowledge exchange platform
WO2003100665A1 (en) * 2002-05-22 2003-12-04 Commnav, Inc. Method and system for multiple virtual portals
US6950825B2 (en) * 2002-05-30 2005-09-27 International Business Machines Corporation Fine grained role-based access to system resources
US7302488B2 (en) * 2002-06-28 2007-11-27 Microsoft Corporation Parental controls customization and notification
EP1381199B1 (en) * 2002-07-12 2006-09-27 Alcatel Firewall for dynamically granting and denying network resources
US8631142B2 (en) * 2002-08-07 2014-01-14 International Business Machines Corporation Inserting targeted content into a portlet content stream
US7254581B2 (en) * 2002-11-13 2007-08-07 Jerry Johnson System and method for creation and maintenance of a rich content or content-centric electronic catalog
US20040098467A1 (en) * 2002-11-15 2004-05-20 Humanizing Technologies, Inc. Methods and systems for implementing a customized life portal
US20040098606A1 (en) * 2002-11-18 2004-05-20 International Business Machines Corporation System, method and program product for operating a grid of service providers based on a service policy
US7035879B2 (en) * 2002-12-26 2006-04-25 Hon Hai Precision Ind. Co., Ltd. System and method for synchronizing data of wireless devices
US6917975B2 (en) * 2003-02-14 2005-07-12 Bea Systems, Inc. Method for role and resource policy management
US20040167880A1 (en) * 2003-02-20 2004-08-26 Bea Systems, Inc. System and method for searching a virtual repository content
DE102004014450A1 (en) * 2003-03-26 2005-02-10 Infineon Technologies Ag Measuring and compensating method of skews in dual in-line memory module, involves calculating relative skew of each data transmission line with respect to slowest data transmission line
US20060085412A1 (en) * 2003-04-15 2006-04-20 Johnson Sean A System for managing multiple disparate content repositories and workflow systems
WO2004107112A2 (en) * 2003-05-23 2004-12-09 Snapbridge Software, Inc. Data federation methods and system
US7076735B2 (en) * 2003-07-21 2006-07-11 Landmark Graphics Corporation System and method for network transmission of graphical data through a distributed application
US20050050184A1 (en) * 2003-08-29 2005-03-03 International Business Machines Corporation Method, system, and storage medium for providing life-cycle management of grid services
US7290015B1 (en) * 2003-10-02 2007-10-30 Progress Software Corporation High availability via data services
US7552109B2 (en) * 2003-10-15 2009-06-23 International Business Machines Corporation System, method, and service for collaborative focused crawling of documents on a network
US8572249B2 (en) * 2003-12-10 2013-10-29 Aventail Llc Network appliance for balancing load and platform services
US7415498B2 (en) * 2003-12-10 2008-08-19 International Business Machines Corporation Time limited collaborative community role delegation policy
US20050198617A1 (en) * 2004-03-04 2005-09-08 Vivcom, Inc. Graphically browsing schema documents described by XML schema
US7877465B2 (en) * 2004-07-14 2011-01-25 International Business Machines Corporation Providing artifact and configuration cohesion across disparate portal application models
US8090702B2 (en) * 2006-09-12 2012-01-03 International Business Machines Corporation Analyzing web site traffic
CA2717462C (en) * 2007-03-14 2016-09-27 Evri Inc. Query templates and labeled search tip system, methods, and techniques
US8463844B2 (en) * 2007-05-09 2013-06-11 Oracle International Corporation Portlets in non-portal pages
US20090089261A1 (en) * 2007-10-01 2009-04-02 Wand, Inc. Method for resolving failed search queries

Patent Citations (116)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5335345A (en) 1990-04-11 1994-08-02 Bell Communications Research, Inc. Dynamic query optimization using partial information
US5173939A (en) 1990-09-28 1992-12-22 Digital Equipment Corporation Access control subsystem and method for distributed computer system using compound principals
US5426747A (en) 1991-03-22 1995-06-20 Object Design, Inc. Method and apparatus for virtual memory mapping and transaction management in an object-oriented database system
US5237614A (en) 1991-06-07 1993-08-17 Security Dynamics Technologies, Inc. Integrated network security system
US5347653A (en) 1991-06-28 1994-09-13 Digital Equipment Corporation System for reconstructing prior versions of indexes using records indicating changes between successive versions of the indexes
US5355474A (en) 1991-09-27 1994-10-11 Thuraisngham Bhavani M System for multilevel secure database management using a knowledge base with release-based and other security constraints for query, response and update modification
US5481700A (en) 1991-09-27 1996-01-02 The Mitre Corporation Apparatus for design of a multilevel secure database management system based on a multilevel logic programming system
US5557747A (en) 1993-06-22 1996-09-17 Rogers; Lawrence D. Network policy implementation system for performing network control operations in response to changes in network state
US5369702A (en) 1993-10-18 1994-11-29 Tecsec Incorporated Distributed cryptographic object method
US5544322A (en) 1994-05-09 1996-08-06 International Business Machines Corporation System and method for policy-based inter-realm authentication within a distributed processing system
EP0697662A1 (en) * 1994-08-15 1996-02-21 International Business Machines Corporation Method and system for advanced role-based access control in distributed and centralized computer systems
US5911143A (en) * 1994-08-15 1999-06-08 International Business Machines Corporation Method and system for advanced role-based access control in distributed and centralized computer systems
US5627886A (en) 1994-09-22 1997-05-06 Electronic Data Systems Corporation System and method for detecting fraudulent network usage patterns using real-time network monitoring
US5872928A (en) 1995-02-24 1999-02-16 Cabletron Systems, Inc. Method and apparatus for defining and enforcing policies for configuration management in communications networks
US6243747B1 (en) 1995-02-24 2001-06-05 Cabletron Systems, Inc. Method and apparatus for defining and enforcing policies for configuration management in communications networks
US5649195A (en) 1995-05-22 1997-07-15 International Business Machines Corporation Systems and methods for synchronizing databases in a receive-only network
US5889953A (en) 1995-05-25 1999-03-30 Cabletron Systems, Inc. Policy management and conflict resolution in computer networks
US5757669A (en) 1995-05-31 1998-05-26 Netscape Communications Corporation Method and apparatus for workgroup information replication
US6233576B1 (en) 1995-06-09 2001-05-15 International Business Machines Corporation Enhanced security for computer system resources with a resource access authorization control facility that creates files and provides increased granularity of resource permission
US5797128A (en) 1995-07-03 1998-08-18 Sun Microsystems, Inc. System and method for implementing a hierarchical policy for computer system administration
US5941947A (en) 1995-08-18 1999-08-24 Microsoft Corporation System and method for controlling access to data entities in a computer network
US5825883A (en) 1995-10-31 1998-10-20 Interval Systems, Inc. Method and apparatus that accounts for usage of digital applications
US6054910A (en) 1995-12-12 2000-04-25 Murata Manufacturing Co., Ltd. Dielectric filter having an inner conductor with two open-circuited inner ends
US6081829A (en) 1996-01-31 2000-06-27 Silicon Graphics, Inc. General purpose web annotations without modifying browser
US5826000A (en) 1996-02-29 1998-10-20 Sun Microsystems, Inc. System and method for automatic configuration of home network computers
US5956719A (en) 1996-03-29 1999-09-21 Fujitsu Limited Synchronization method applied to databases in network management system
US5826268A (en) 1996-04-12 1998-10-20 Ontos, Inc. Secure multilevel object oriented database management system
US5848396A (en) 1996-04-26 1998-12-08 Freedom Of Information, Inc. Method and apparatus for determining behavioral profile of a computer user
US5991735A (en) 1996-04-26 1999-11-23 Be Free, Inc. Computer program apparatus for determining behavioral profile of a computer user
US6256741B1 (en) 1996-04-30 2001-07-03 At&T Corp. Specifying security protocols and policy constraints in distributed systems
US6216231B1 (en) 1996-04-30 2001-04-10 At & T Corp. Specifying security protocols and policy constraints in distributed systems
US5987469A (en) 1996-05-14 1999-11-16 Micro Logic Corp. Method and apparatus for graphically representing information stored in electronic media
US5838909A (en) 1996-05-23 1998-11-17 Sandcastle, Inc. Reducing latency when synchronizing access to a multi-user database over a network
US5918210A (en) 1996-06-07 1999-06-29 Electronic Data Systems Corporation Business query tool, using policy objects to provide query responses
US5956400A (en) 1996-07-19 1999-09-21 Digicash Incorporated Partitioned information storage systems with controlled retrieval
US6055515A (en) 1996-07-30 2000-04-25 International Business Machines Corporation Enhanced tree control system for navigating lattices data structures and displaying configurable lattice-node labels
US5758355A (en) 1996-08-07 1998-05-26 Aurum Software, Inc. Synchronization of server database with client database using distribution tables
US5950195A (en) 1996-09-18 1999-09-07 Secure Computing Corporation Generalized security policy management system and method
US6055637A (en) * 1996-09-27 2000-04-25 Electronic Data Systems Corporation System and method for accessing enterprise-wide resources by presenting to the resource a temporary credential
US6029182A (en) 1996-10-04 2000-02-22 Canon Information Systems, Inc. System for generating a custom formatted hypertext document by using a personal profile to retrieve hierarchical documents
US6154844A (en) 1996-11-08 2000-11-28 Finjan Software, Ltd. System and method for attaching a downloadable security profile to a downloadable
US6058392A (en) 1996-11-18 2000-05-02 Wesley C. Sampson Revocable Trust Method for the organizational indexing, storage, and retrieval of data according to data pattern signatures
US5987611A (en) 1996-12-31 1999-11-16 Zone Labs, Inc. System and methodology for managing internet access on a per application basis for client computers connected to the internet
US6241608B1 (en) 1997-01-15 2001-06-05 Lawrence J. Torango Progressive wagering system
US6128663A (en) 1997-02-11 2000-10-03 Invention Depot, Inc. Method and apparatus for customization of information content provided to a requestor over a network using demographic information yet the user remains anonymous to the server
US6092083A (en) 1997-02-26 2000-07-18 Siebel Systems, Inc. Database management system which synchronizes an enterprise server and a workgroup user client using a docking agent
US6105027A (en) 1997-03-10 2000-08-15 Internet Dynamics, Inc. Techniques for eliminating redundant access checking by access filters
US6026433A (en) 1997-03-17 2000-02-15 Silicon Graphics, Inc. Method of creating and editing a web site in a client-server environment using customizable web site templates
US5925126A (en) 1997-03-18 1999-07-20 Memco Software, Ltd. Method for security shield implementation in computer system's software
US6226745B1 (en) 1997-03-21 2001-05-01 Gio Wiederhold Information sharing system and method with requester dependent sharing and security rules
US5867667A (en) 1997-03-24 1999-02-02 Pfn, Inc. Publication network control system using domain and client side communications resource locator lists for managing information communications between the domain server and publication servers
US6275941B1 (en) 1997-03-28 2001-08-14 Hiatchi, Ltd. Security management method for network system
US5991877A (en) 1997-04-03 1999-11-23 Lockheed Martin Corporation Object-oriented trusted application framework
US6112192A (en) 1997-05-09 2000-08-29 International Business Machines Corp. Method for providing individually customized content in a network
US6029196A (en) 1997-06-18 2000-02-22 Netscape Communications Corporation Automatic client configuration system
US6185587B1 (en) 1997-06-19 2001-02-06 International Business Machines Corporation System and method for building a web site with automated help
US6029144A (en) 1997-08-29 2000-02-22 International Business Machines Corporation Compliance-to-policy detection method and system
US6005571A (en) 1997-09-30 1999-12-21 Softline, Inc. Graphical user interface for managing security in a database system
US6006194A (en) 1997-10-01 1999-12-21 Merel; Peter A. Computer-implemented system for controlling resources and policies
US5954798A (en) 1997-10-06 1999-09-21 Ncr Corporation Mechanism for dependably managing web synchronization and tracking operations among multiple browsers
US6009410A (en) 1997-10-16 1999-12-28 At&T Corporation Method and system for presenting customized advertising to a user on the world wide web
US6157924A (en) 1997-11-07 2000-12-05 Bell & Howell Mail Processing Systems Company Systems, methods, and computer program products for delivering information in a preferred medium
US6202066B1 (en) * 1997-11-19 2001-03-13 The United States Of America As Represented By The Secretary Of Commerce Implementation of role/group permission association using object access type
US6236991B1 (en) 1997-11-26 2001-05-22 International Business Machines Corp. Method and system for providing access for categorized information from online internet and intranet sources
US6098173A (en) 1997-11-27 2000-08-01 Security-7 (Software) Ltd. Method and system for enforcing a communication security policy
US6088679A (en) 1997-12-01 2000-07-11 The United States Of America As Represented By The Secretary Of Commerce Workflow management employing role-based access control
US5966707A (en) 1997-12-02 1999-10-12 International Business Machines Corporation Method for managing a plurality of data processes residing in heterogeneous data repositories
US6169794B1 (en) 1997-12-05 2001-01-02 Fujitsu Limited Method and apparatus for synchronizing databases within intelligent network
US6202157B1 (en) 1997-12-08 2001-03-13 Entrust Technologies Limited Computer network security system and method having unilateral enforceable security policy provision
US6269456B1 (en) 1997-12-31 2001-07-31 Network Associates, Inc. Method and system for providing automated updating and upgrading of antivirus applications using a computer network
US6202207B1 (en) 1998-01-28 2001-03-13 International Business Machines Corporation Method and a mechanism for synchronized updating of interoperating software
US6357010B1 (en) * 1998-02-17 2002-03-12 Secure Computing Corporation System and method for controlling access to documents stored on an internal network
US6108687A (en) 1998-03-02 2000-08-22 Hewlett Packard Company System and method for providing a synchronized display to a plurality of computers over a global computer network
US6304881B1 (en) 1998-03-03 2001-10-16 Pumatech, Inc. Remote data access and synchronization
US6141686A (en) 1998-03-13 2000-10-31 Deterministic Networks, Inc. Client-side application-classifier gathering network-traffic statistics and application and user names using extensible-service provider plugin for policy-based network control
US6182226B1 (en) 1998-03-18 2001-01-30 Secure Computing Corporation System and method for controlling interactions between networks
US6073242A (en) 1998-03-19 2000-06-06 Agorics, Inc. Electronic authority server
US6178172B1 (en) 1998-03-24 2001-01-23 3Com Corporation Method of topology database synchronization in an asynchronous transfer mode network
US6006265A (en) 1998-04-02 1999-12-21 Hotv, Inc. Hyperlinks resolution at and by a special network server in order to enable diverse sophisticated hyperlinking upon a digital network
US6285985B1 (en) 1998-04-03 2001-09-04 Preview Systems, Inc. Advertising-subsidized and advertising-enabled software
US6295607B1 (en) 1998-04-06 2001-09-25 Bindview Development Corporation System and method for security control in a data processing system
US6182277B1 (en) 1998-04-15 2001-01-30 Oracle Corporation Methods and apparatus for declarative programming techniques in an object oriented environment
US6188399B1 (en) 1998-05-08 2001-02-13 Apple Computer, Inc. Multiple theme engine graphical user interface architecture
US6148333A (en) 1998-05-13 2000-11-14 Mgi Software Corporation Method and system for server access control and tracking
US6122647A (en) 1998-05-19 2000-09-19 Perspecta, Inc. Dynamic generation of contextual links in hypertext documents
US6167407A (en) 1998-06-03 2000-12-26 Symantec Corporation Backtracked incremental updating
US6167448A (en) 1998-06-11 2000-12-26 Compaq Computer Corporation Management event notification system using event notification messages written using a markup language
US6083276A (en) 1998-06-11 2000-07-04 Corel, Inc. Creating and configuring component-based applications using a text-based descriptive attribute grammar
US6133915A (en) 1998-06-17 2000-10-17 Microsoft Corporation System and method for customizing controls on a toolbar
US6253321B1 (en) 1998-06-19 2001-06-26 Ssh Communications Security Ltd. Method and arrangement for implementing IPSEC policy management using filter code
US6285366B1 (en) 1998-06-30 2001-09-04 Sun Microsystems, Inc. Hierarchy navigation system
US6182142B1 (en) 1998-07-10 2001-01-30 Encommerce, Inc. Distributed access management of information resources
US6161139A (en) * 1998-07-10 2000-12-12 Encommerce, Inc. Administrative roles that govern access to administrative functions
US6209101B1 (en) 1998-07-17 2001-03-27 Secure Computing Corporation Adaptive security system having a hierarchy of security servers
US6205466B1 (en) 1998-07-17 2001-03-20 Hewlett-Packard Company Infrastructure for an open digital services marketplace
US6141010A (en) 1998-07-17 2000-10-31 B. E. Technology, Llc Computer interface method and apparatus with targeted advertising
US6170009B1 (en) 1998-07-17 2001-01-02 Kallol Mandal Controlling devices on a network through policies
US6195696B1 (en) 1998-10-01 2001-02-27 International Business Machines Corporation Systems, methods and computer program products for assigning, generating and delivering content to intranet users
US6285983B1 (en) 1998-10-21 2001-09-04 Lend Lease Corporation Ltd. Marketing systems and methods that preserve consumer privacy
US6167445A (en) 1998-10-26 2000-12-26 Cisco Technology, Inc. Method and apparatus for defining and implementing high-level quality of service policies in computer networks
US6158010A (en) 1998-10-28 2000-12-05 Crosslogix, Inc. System and method for maintaining security in a distributed computer network
US6574736B1 (en) * 1998-11-30 2003-06-03 Microsoft Corporation Composable roles
US6301613B1 (en) 1998-12-03 2001-10-09 Cisco Technology, Inc. Verifying that a network management policy used by a computer system can be satisfied and is feasible for use
US6308163B1 (en) 1999-03-16 2001-10-23 Hewlett-Packard Company System and method for enterprise workflow resource management
US6269393B1 (en) 1999-03-23 2001-07-31 Microstrategy, Inc. System and method for automatic transmission of personalized OLAP report output
US6260050B1 (en) 1999-03-23 2001-07-10 Microstrategy, Inc. System and method of adapting automatic output of service related OLAP reports to disparate output devices
US6581054B1 (en) * 1999-07-30 2003-06-17 Computer Associates Think, Inc. Dynamic query model and method
US6751657B1 (en) * 1999-12-21 2004-06-15 Worldcom, Inc. System and method for notification subscription filtering based on user role
US20010047485A1 (en) * 2000-03-06 2001-11-29 Daniel Brown Computer security system
US6735624B1 (en) * 2000-04-07 2004-05-11 Danger, Inc. Method for configuring and authenticating newly delivered portal device
US7185192B1 (en) * 2000-07-07 2007-02-27 Emc Corporation Methods and apparatus for controlling access to a resource
US20020147801A1 (en) * 2001-01-29 2002-10-10 Gullotta Tony J. System and method for provisioning resources to users based on policies, roles, organizational information, and attributes
US6886100B2 (en) * 2001-05-15 2005-04-26 Hewlett-Packard Development Company, L.P. Disabling tool execution via roles
US20020178119A1 (en) * 2001-05-24 2002-11-28 International Business Machines Corporation Method and system for a role-based access control model with active roles
US20020188869A1 (en) * 2001-06-11 2002-12-12 Paul Patrick System and method for server security and entitlement processing
US20030046576A1 (en) * 2001-08-30 2003-03-06 International Business Machines Corporation Role-permission model for security policy administration and enforcement

Non-Patent Citations (76)

* Cited by examiner, † Cited by third party
Title
"Guide to Using the BEA E-Business Control Center," BEAWebLogic Portal, Version 4.0 (Oct. 2001) 356 pages.
Adomavicius, Gediminas, et al., "User Profiling in Personalization Applications Through Rule Discovery and Validation", KDD '99, San Diego, CA, (C) ACM 1999, pp. 377-381.
Adya, Atul, et al., "FARSITE: Federated, Available and Reliable Storage for an Incompletely Trusted Environment", ACM SIGOPS Operating Systems Review, vol. 36, Issue SI, OSDI '02: Proceedings of the 5th Symposium on Operating Systems Design and Implementation, pp. 1-14 (Winter 2002).
Ahn, Gail-Joon, Michael E. Shin: Role-Based Authorization Constraints Specification Using Object Constraint Language. WETICE 2001: 157-162. *
Atkins, D.L., et al., "Mawl: A Domain-Specific Language for Form-Based Services", IEEE Transactions on Software Engineering, IEEE Service Center, Los Alamitos, CA, US, vol. 25, No. 3, pp. 334-346 (May 1999).
Ayers, Danny, et al., Professional Java Server Programming, Wrox Press, Ltd., Birmingham, UK, Dec. 1999, pp. 515-545.
Barrett, Alexandra, "Trying Out Transactions", SunExpert Magazine, Jan. 1999, pp. 57-59.
Bertino, Elisa et al. "TRBAC: A temporal role-based access control model", ACM Transactions on Information and System Security (TISSEC), vol. 4, Issue 3 (Aug. 2001). *
Browne et al., Location-Independent Naming for Virtual Distributed Software Repositories, http://portal.acm.org/dl.cfm, ACM Symposium on Software Reusability, Seattle, WA, USA, Aug. 1995, vol. 20, Issue SI, pp. 179-185.
Candan, K.S. et al., Enabling Dynamic Content Caching for Database-Driven Web Sites, Proceedings of the 2001 ACM SIGMOD International Conference on Management of Data, May 21-24, 2001, Santa Barbara, California, pp. 532-554.
Catley et al., Design of a Health Care Architecture for Medical Data Interoperability and Application Integration, Proceedings of the Second Joint EMBS/BMES Conference, Houston, TX, Oct. 23-26, 2002, IEEE, vol. 3, pp. 1952-1953.
Cingil, Ibrahim, et al., " A Broader Approach to Personalization", Communications of the ACM, vol. 43, No. 6, pp. 136-141 (Aug. 2000).
Covington, Michael J. et al. "Securing context-aware applications using environment roles", ACM Workshop on Role Based Access Control, Proceedings of the sixth ACM symposium on Access control models and technologies, 2001. *
Eiji Okamoto, "Proposal for Integrated Security Systems", Jun. 1992, IEEE Computer Society Press, p. 354-358.
Faden, Glenn: RBAC in UNIX Administration. ACM Workshop on Role-Based Access Control 1999: 95-101. *
Ford, Nigel, Web Developer.com Guide to Building Intelligent Web Sites with JavaScript, Wiley Computer Publishing, NY, NY (C) 1998, pp. 65-86, 96-98, 101-102, 245-250 and 324-327.
Freudenthal, Eric, et al. "dRBAC: Distributed Role-Based Access Control for Dynamic Coalition Environments", Proceedings of the 22nd International Conference on Distributed Computing Systems (ICDCS '02) IEEE 2002, 10 pages.
Georgiadis, Christos K. et al. "Flexible team-based access control using contexts", ACM Workshop on Role Based Access Control, Proceedings of the sixth ACM symposium on Access control models and technologies, 2001. *
Goh, Chen et al. "Towards a more complete model of role", Symposium on Access Control Models and Technologies, Proceedings of the third ACM workshop on Role-based access control, 1998. *
Gustafsson, Mats, Benoit Deligny, Nahid Shahmehri: Using NFS to Implement Role-Based Access Control. WETICE 1997: 299-304. *
Hayton, R.J. et al. "Access Control in an Open Distributed Environment", 1998. *
Howes, T. "The String Representation of LDAP Search Filters", Dec. 1997 (RFC 2254). *
http://java.sun.com/products/ejb/ (last visit: Dec. 7, 2004).
http://portal.acm.org/citation.cfm?id=1011436, p. 1, last visited: Oct. 24, 2007.
http://www.javaworld.com/jw-12-2002/jw-1207-yesnoejb<SUB>-</SUB>p.html (last visit: Dec. 7, 2004).
Hunter, Jason, "Java Servlet Programming", second edition, O'Reilly, Apr. 11, 2001.
International Search Report, PCT/US02/34006, Jan. 13, 2003, 3 sheets.
International Search Report, PCT/US02/34007, Jan. 21, 2003, 3 sheets.
International Search Report, PCT/US02/34008, Dec. 31, 2002, 5 sheets.
International Search Report, PCT/US02/34048, Dec. 23, 2002, 2 sheets.
International Search Report, PCT/US02/34088, Mar. 7, 2003, 3 sheets.
International Search Report, PCT/US02/34089, Feb. 10, 2003, 4 sheets.
International Search Report, PCT/US02/34308, Mar. 5, 2003, 4 sheets.
International Search Report, PCT/US02/34309, Feb. 14, 2003, 4 sheets.
International Search Report, PCT/US04/04078, Dec. 15, 2005, 3 sheets.
International Search Report, PCT/US04/04140, Dec. 27, 2005, 3 sheets.
Joshi, James, Walid G. Aref, Arif Ghafoor, Eugene H. Spafford: Security models for web-based applications. Commun. ACM 44(2): 38-44 (2001). *
Kistler, T., et al., "WebL-a programming language for the Web", Computer Networks and ISDN Systems, North Holland Publishing, Amsterdam, NL, vol. 30, No. 1-7, pp. 259-270 (Apr. 1998).
Koved et al., "Security Challenges for Enterprise Java in an e-Business Environment," pp. 130-152, IBM Systems Journal, vol. 40, No. 1, Jan. 2001.
Levy, M.R., "Web Programming in Guide", Software Practice & Experience, Wiley & Sons, Bognor Regis, GB, vol. 28, No. 15, pp. 1581-1603 (Dec. 25, 1998).
Method and System for Visually Constructing Document Type Definitions and Related Artifacts Using a Reusable Object Model, IBM Technical Disclosure Bulletin, copyright IP.com, Inc., May 23, 2001, 3 pages.
Microsoft Computer Dictionary, 4<SUP>th </SUP>Edition, Microsoft Press, Redmond, WA, (C) 1999, p. 489.
Microsoft Windows ("Windows Explorer") copyright 1981-2001, 3 pages.
Moore, Bill, et al., "Migrating Weblogic Applications to WebSphere Advanced Edition", IBM Redbooks, Jan. 2001, pp. 1, 3-4, 109-111 and 181-195.
Moran, D.B., et al. "Multimodal User Interfaces in the Open Agent Architecture," ACM 0-89791-839-8/96/01, IUI 97, Orlando Florida USA (1997) pp. 61-68.
Na, SangYeob, SuhHyun Cheon: Role delegation in role-based access control. ACM Workshop on Role-Based Access Control 2000: 39-44. *
Oh, Sejong, Seog Park: Enterprise Model as a Basis of Administration on Role-Based Access Control. CODAS 2001: 150-158. *
Park, Joon S., Ravi S. Sandhu, Gail-Joon Ahn: Role-based access control on the web. ACM Trans. Inf. Syst. Secur. 4(1):37-71 (2001). *
Parker, Elizabeth, The Complete Idiot's Guide to Microsoft FrontPage 2000, 1999, Que, pp. 7 and 55.
Porwal, Priyank. "Automating Optimistic Access Control Systems", date unknown. *
Povey, Dean. "Optimistic Security: A New Access Control Paradigm", (1999). *
Rossi, Gustavo et al., Designing Personalized Web Applications, ACM, WWW10, Hong Kong, May 1-5, 2001, pp. 275-284.
Rouff, C., "Formal Specification of User Interfaces," SIGCHI Bulletin vol. 28, No. 3 (Jul. 1996) pp. 27-33.
Sandhu, Ravi S. et al. "Role-Based Access Control Models", IEEE Computer, vol. 29, No. 2, Feb. 1996. *
Sandhu, Ravi S., Edward J. Coyne, Hal L. Feinstein, Charles E. Youman: Role-Based Access Control Models. IEEE Computer 29(2): 38-47 (1996). *
Sandhu, Ravi S., Qamar Munawer: The RRA97 Model for Role-Based Administration of Role Hierarchies. ACSAC 1998: 39-49. *
Sandhu, Ravi S., Venkata Bhamidipati, Qamar Munawer: The ARBAC97 Model for Role-Based Administration of Roles. ACM Trans. Inf. Syst. Secur. 2(1): 105-135 (1999). *
Shim, Won Bo, Seog Park: Implementing Web Access Control System for the Multiple Web Servers in the Same Domain Using RBAC Concept. ICPADS 2001: 768-773. *
Stephanidis, Constantine, et al., "Decision Making in Intelligent User Interfaces", IUI '97, Orlando, FL, (C) ACM 1997, pp. 195-202.
Stiemerling, Oliver, et al., "How to Make Software Softer-Designing Tailorable Applications", DIS '97, Amsterdam, The Netherlands, (C) ACM 1997, pp. 365-376.
Sundsted, Todd, "JNDI Overview, Part 1: An Introduction to Naming Services", JavaWorld, Jan. 2000. pp. 1-6, (downloaded from: www.javaworld.com/javaworld/jw-01-2000/jw-01-howto<SUB>-</SUB>p.html).
Supplementary European Search Report for EP 01975484.5 dated Dec. 19, 2006, 2 pages.
Supplementary European Search Report for EP 02773915.0 dated Oct. 12, 2006, 3 pages.
Symborski, Carl W., "Updating Software and Configuration Data in a Distributed Communications Network"; IEEE Computer Networking Symposium, Proceedings of the IEEE Computer Society, Washington, D.C., Apr. 11-13, 1988, pp. 331-338.
Tanyi, Emmanuel, Easy XML, Mar. 6, 2000, www.winsite.com, pp. 1-6.
Tzelepi, Sofia K. et al. "A flexible content and context-based access control model for multimedia medical image database systems", International Multimedia Conference, Proceedings of the 2001 workshop on Multimedia and security: new challenges, Oct. 5, 2001. *
U.S. Appl. No. 10/279,449, filed Oct. 24, 2002, Philip B. Griffin.
U.S. Appl. No. 10/279,450, filed Oct. 24, 2002, Daniel Selman et al.
U.S. Appl. No. 10/279,542, filed Oct. 24, 2002, Thomas A. Cook et al.
U.S. Appl. No. 10/279,543, filed Oct. 24, 2002, Philip B. Griffin et al.
U.S. Appl. No. 10/279,663, filed Oct. 24, 2002, John Haut et al.
U.S. Appl. No. 10/279,696, filed Oct. 24, 2002, Shelly Qian et al.
U.S. Appl. No. 10/279,951, filed Oct. 24, 2002, Chris Jolley et al.
US DataCenters . . . eBusiness, Business Wire, p. 2079, Apr. 4, 2001.
Yao, Walt et al. "A model of OASIS role-based access control and its support for active security", ACM Workshop on Role Based Control, Proceedings of the sixth ACM symposium on Access control models and technologies, 2001. *
Zhang, Zheng, et al., "Designing a Robust Namespace for Distributed File Services", IEEE Proceedings of the 20th Symposium on Reliable Distributed Systems, New Orleans, Louisiana, Oct. 28-31, 2001, pp. 162-171.

Cited By (39)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060235935A1 (en) * 2002-10-04 2006-10-19 International Business Machines Corporation Method and apparatus for using business rules or user roles for selecting portlets in a web portal
US20080270174A1 (en) * 2003-03-17 2008-10-30 David Schlesinger Entitlment Security and Control
US8386388B2 (en) * 2003-03-17 2013-02-26 Intel Corporation Entitlement security and control
US9245094B2 (en) 2003-03-17 2016-01-26 Intel Corporation Entitlement security and control
US9684793B2 (en) 2003-03-17 2017-06-20 Intel Corporation Entitlement security and control
US20050010781A1 (en) * 2003-04-30 2005-01-13 Patricia Harper Extranet service site and method for using same
US7739720B2 (en) * 2004-10-14 2010-06-15 Microsoft Corporation Method and system for merging security policies
US20060085838A1 (en) * 2004-10-14 2006-04-20 Microsoft Corporation Method and system for merging security policies
US20070084915A1 (en) * 2005-10-18 2007-04-19 Weipeng Yan Identifying spurious requests for information
US8611856B2 (en) * 2005-10-18 2013-12-17 Google Inc. Identifying spurious requests for information
US20080046825A1 (en) * 2006-06-09 2008-02-21 International Business Machines Corporation Method, Apparatus or Software for Providing a Portal Comprising One or More Portlets for Displaying Data
US20070288389A1 (en) * 2006-06-12 2007-12-13 Vaughan Michael J Version Compliance System
US8312516B1 (en) * 2006-06-20 2012-11-13 Workday, Inc. Security permissions with dynamic definition
US20080016580A1 (en) * 2006-07-11 2008-01-17 Royyuru Dixit Role-based access in a multi-customer computing environment
US8336078B2 (en) * 2006-07-11 2012-12-18 Fmr Corp. Role-based access in a multi-customer computing environment
US20080066049A1 (en) * 2006-09-12 2008-03-13 Sandeep Jain Method for enforcing change policy based on project state
US8645906B2 (en) * 2006-09-12 2014-02-04 Sandeep Jain Method for enforcing change policy based on project state
US20090133100A1 (en) * 2007-11-21 2009-05-21 Jan Buchwald Access control on dynamically instantiated portal applications
US8316420B2 (en) * 2007-11-21 2012-11-20 International Business Machines Corporation Access control on dynamically instantiated portal applications
US20090287707A1 (en) * 2008-05-15 2009-11-19 International Business Machines Corporation Method to Manage Inventory Using Degree of Separation Metrics
US9514286B2 (en) 2008-06-05 2016-12-06 International Business Machines Corporation Context-based security policy evaluation using weighted search trees
US8117643B2 (en) * 2008-06-12 2012-02-14 International Business Machines Corporation Mathematical definition of roles and authorizations in RBAC system
US20090313677A1 (en) * 2008-06-12 2009-12-17 International Business Machines Corporation Mathematical definition of roles and authorizations in RBAC system
US11481358B2 (en) 2009-12-22 2022-10-25 International Business Machines Corporation Adapting a workflow
US20110153555A1 (en) * 2009-12-22 2011-06-23 International Business Machines Corporation Adapting a Workflow
US10430387B2 (en) 2009-12-22 2019-10-01 International Business Machines Corporation Adapting a workflow
US8725767B1 (en) * 2010-03-31 2014-05-13 Emc Corporation Multi-dimensional object model for storage management
US20130085800A1 (en) * 2011-10-03 2013-04-04 Sap Ag System and Method of Business Risk Based Authorization
US9020883B2 (en) 2012-02-22 2015-04-28 Oracle International Corporation System and method to provide BPEL support for correlation aggregation
US10037197B2 (en) 2013-03-15 2018-07-31 Oracle International Corporation Flexible microinstruction system for constructing microprograms which execute tasks, gateways, and events of BPMN models
US10257184B1 (en) * 2014-09-29 2019-04-09 Amazon Technologies, Inc. Assigning policies for accessing multiple computing resource services
US10652235B1 (en) 2014-09-29 2020-05-12 Amazon Technologies, Inc. Assigning policies for accessing multiple computing resource services
US10659469B2 (en) 2018-02-13 2020-05-19 Bank Of America Corporation Vertically integrated access control system for managing user entitlements to computing resources
US10824754B2 (en) 2018-02-13 2020-11-03 Bank Of America Corporation Vertically integrated access control system for identifying and remediating flagged combinations of capabilities resulting from user entitlements to computing resources
US10607022B2 (en) 2018-02-13 2020-03-31 Bank Of America Corporation Vertically integrated access control system for identifying and remediating flagged combinations of capabilities resulting from user entitlements to computing resources
US10986097B2 (en) 2018-04-30 2021-04-20 Bank Of America Corporation System for using a distributed ledger to manage user entitlements to computing resources
US11165787B2 (en) 2019-08-26 2021-11-02 Bank Of America Corporation System for authorization of electronic data access and processing functions within a distributed server network
US11881939B2 (en) 2019-08-26 2024-01-23 Bank Of America Corporation System for authorization of electronic data access and processing functions within a distributed server network
US11108882B2 (en) 2019-12-09 2021-08-31 Bank Of America Corporation System for assessing and enhancing role defining parameters associated with access to resources in a network

Also Published As

Publication number Publication date
JP2005507122A (en) 2005-03-10
US20050187986A1 (en) 2005-08-25
US20030110172A1 (en) 2003-06-12
JP4173447B2 (en) 2008-10-29
WO2003036505A1 (en) 2003-05-01
US7516167B2 (en) 2009-04-07
EP1442397A1 (en) 2004-08-04
US7240280B2 (en) 2007-07-03
AU2002336667B2 (en) 2007-06-21
WO2003036489A1 (en) 2003-05-01
US20050187993A1 (en) 2005-08-25
US20050187978A1 (en) 2005-08-25
CN1647071A (en) 2005-07-27
US20030115292A1 (en) 2003-06-19
US20030117437A1 (en) 2003-06-26
US20070214421A1 (en) 2007-09-13
US20030105974A1 (en) 2003-06-05
EP1442397A4 (en) 2006-11-15
WO2003036521A1 (en) 2003-05-01
WO2003036500A1 (en) 2003-05-01
US20030149722A1 (en) 2003-08-07
WO2003036548A1 (en) 2003-05-01
US7367014B2 (en) 2008-04-29
US20030126558A1 (en) 2003-07-03
CN100504853C (en) 2009-06-24
US20030110448A1 (en) 2003-06-12
US7472342B2 (en) 2008-12-30
US20030145275A1 (en) 2003-07-31
WO2003036481A1 (en) 2003-05-01
US7451163B2 (en) 2008-11-11
WO2003036490A1 (en) 2003-05-01
WO2003036609A1 (en) 2003-05-01

Similar Documents

Publication Publication Date Title
US7451477B2 (en) System and method for rule-based entitlements
EP1593024B1 (en) System and method for hierarchical role-based entitlements
US6917975B2 (en) Method for role and resource policy management
US7653930B2 (en) Method for role and resource policy management optimization
JP4398371B2 (en) How to control access to a relational database
US7124192B2 (en) Role-permission model for security policy administration and enforcement
US6311269B2 (en) Trusted services broker for web page fine-grained security labeling
AU704130B2 (en) Security system for computer systems
US7748027B2 (en) System and method for dynamic data redaction
US20080022370A1 (en) System and method for role based access control in a content management system
US20020112155A1 (en) User Authentication
US20050177753A1 (en) Set top box object security system
US20020120599A1 (en) Post data processing
US7774601B2 (en) Method for delegated administration
US20020156782A1 (en) Controlling access to database
US7743425B2 (en) Security restrictions on binary behaviors
US20040268154A1 (en) Authentication scheme system and method
US7627766B2 (en) System and method for providing java server page security
US7260831B1 (en) Method and system for authorization and access to protected resources
US20020103734A1 (en) Method and apparatus for managing publication and sharing of data
US8831966B2 (en) Method for delegated administration
US20050086228A1 (en) Conditionalized Access Control Based on Dynamic Content Analysis

Legal Events

Date Code Title Description
AS Assignment

Owner name: BEA SYSTEMS, INC., CALIFORNIA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:GRIFFIN, PHILIP B.;DEVGAN, MANISH;HOWES, JASON;AND OTHERS;REEL/FRAME:013702/0202;SIGNING DATES FROM 20030107 TO 20030115

STCF Information on status: patent grant

Free format text: PATENTED CASE

CC Certificate of correction
AS Assignment

Owner name: ORACLE INTERNATIONAL CORPORATION, CALIFORNIA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:BEA SYSTEMS, INC.;REEL/FRAME:025192/0244

Effective date: 20101008

FPAY Fee payment

Year of fee payment: 4

FPAY Fee payment

Year of fee payment: 8

MAFP Maintenance fee payment

Free format text: PAYMENT OF MAINTENANCE FEE, 12TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1553); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

Year of fee payment: 12